Skills
skills/inference-sh/agent-skills/elevenlabs-tts/Gen Agent Trust Hub

elevenlabs-tts

Pass

Audited by Gen Agent Trust Hub on Apr 14, 2026

Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill uses the Bash tool to run the infsh CLI. Access is restricted to commands starting with 'infsh' via the allowed-tools configuration in the frontmatter.\n- [EXTERNAL_DOWNLOADS]: The skill documentation provides a link to an installation script for the infsh CLI hosted on the author's GitHub repository (inference-sh/skills).\n- [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection as it ingests and processes user-supplied text for audio generation.\n
  • Ingestion points: The 'text' parameter in the infsh app run commands shown in SKILL.md examples.\n
  • Boundary markers: None present in the command-line examples.\n
  • Capability inventory: Execution of vendor-specific commands via the Bash tool.\n
  • Sanitization: No sanitization or validation of the input text is explicitly defined within the skill instructions.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 14, 2026, 09:11 AM