sonoscli
Pass
Audited by Gen Agent Trust Hub on Feb 23, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCREDENTIALS_UNSAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill installation metadata specifies a dependency on the 'sonos' binary, which is installed via
go install github.com/steipete/sonoscli/cmd/sonos@latestfrom a public repository. - [CREDENTIALS_UNSAFE]: The skill documentation identifies the need for
SPOTIFY_CLIENT_IDandSPOTIFY_CLIENT_SECRETenvironment variables to support optional Spotify search features. No hardcoded credentials or sensitive tokens are present within the skill's source files.
Audit Metadata