voicemode-dj
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- Indirect Prompt Injection (LOW): The skill allows the agent to play music from external URLs, creating a surface for potential indirect instructions. Ingestion points: URL parameter in the
voicemode dj playcommand. Boundary markers: None provided to isolate untrusted URL data. Capability inventory: Execution ofvoicemode djCLI commands. Sanitization: No validation or escaping of external content is described. - COMMAND_EXECUTION (SAFE): The skill instructs the agent to use a local CLI tool (
voicemode) to perform music playback tasks, which is the primary and expected functionality. - EXTERNAL_DOWNLOADS (SAFE): Streaming media from external URLs is a core feature of the music control functionality and is considered safe in this context.
Audit Metadata