audio-download
Pass
Audited by Gen Agent Trust Hub on Feb 19, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [Unverifiable Dependencies & Remote Code Execution] (LOW): The skill installs 'yt-dlp' via pip and 'ffmpeg' via brew. While these are necessary for the skill's primary function of media downloading and conversion, they are external dependencies. [TRUST-SCOPE-RULE] is applied as these are standard tools for the task.
- [Indirect Prompt Injection] (LOW): The skill processes untrusted URLs to fetch external content metadata (e.g., titles). * Ingestion points: The 'url' parameter in 'scripts/download.py'. * Boundary markers: Absent; the URL is processed directly. * Capability inventory: Execution of 'yt-dlp' via 'subprocess.run' in 'scripts/download.py'. * Sanitization: Implements domain-based whitelisting for YouTube and Twitter/X domains.
- [Dynamic Execution] (SAFE): The Python script uses 'subprocess.run' with a list of arguments rather than a single shell string, which is the recommended practice to prevent shell injection vulnerabilities.
Audit Metadata