openhue
Pass
Audited by Gen Agent Trust Hub on Mar 11, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- [COMMAND_EXECUTION]: The skill utilizes the openhue CLI tool to perform setup, discovery, and light control operations.
- [EXTERNAL_DOWNLOADS]: The skill requires the installation of the openhue-cli package from the official Homebrew repository for the project.
- [PROMPT_INJECTION]: The skill processes JSON data from the Hue Bridge, representing an indirect injection surface. * Ingestion points: JSON output from openhue get light, openhue get room, and openhue get scene. * Boundary markers: None present. * Capability inventory: Executes local system commands via the openhue binary. * Sanitization: No explicit validation or escaping of bridge-sourced data is defined.
Audit Metadata