camsnap
Warn
Audited by Gen Agent Trust Hub on Mar 12, 2026
Risk Level: MEDIUMCREDENTIALS_UNSAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [CREDENTIALS_UNSAFE]: The skill documentation suggests a command pattern (camsnap add --user user --pass pass) that includes plain-text credentials as command-line arguments. This practice exposes sensitive information to shell history, process monitors, and logs.
- [EXTERNAL_DOWNLOADS]: The skill's installation metadata specifies a Homebrew tap (steipete/tap/camsnap) which is an external, third-party source not associated with the primary trusted vendor list or the skill author.
- [COMMAND_EXECUTION]: The skill requires the installation and execution of the camsnap binary and relies on ffmpeg being present on the system path to process media streams.
Audit Metadata