sag
Pass
Audited by Gen Agent Trust Hub on Feb 23, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill facilitates the installation of the
sagutility using a third-party Homebrew tap (steipete/tap/sag), a common distribution method for this tool. - [COMMAND_EXECUTION]: The skill utilizes the
sagbinary to perform audio generation and voice management tasks via shell execution. - [PROMPT_INJECTION]: The skill contains a surface for indirect prompt injection as it passes user-provided text to a CLI utility for synthesis. • Ingestion points: User-supplied messages intended for text-to-speech conversion. • Boundary markers: No explicit delimiters are specified for user input in the usage examples. • Capability inventory: Shell subprocess execution for the
sagbinary. • Sanitization: No specific input sanitization or shell-escaping is described for the user-provided text.
Audit Metadata