Skills
skills/nodnarbnitram/claude-code-extensions/esphome-box3-builder/Gen Agent Trust Hub

esphome-box3-builder

Pass

Audited by Gen Agent Trust Hub on Feb 17, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [EXTERNAL_DOWNLOADS] (SAFE): Documentation in assets/fonts/README.md instructs the user to download assets from trusted sources, specifically Google's Roboto repository on GitHub and the Material Design Icons CDN.
  • [COMMAND_EXECUTION] (SAFE): The scripts/flash-box3.sh script is a legitimate helper tool that uses the official esphome CLI to compile and upload firmware to the connected hardware.
  • [PROMPT_INJECTION] (LOW): The templates/box3-voice.yaml file defines a voice assistant pipeline, creating a surface for indirect prompt injection via the microphone input. * Ingestion points: Microphone audio stream processed by the voice_assistant component in templates/box3-voice.yaml. * Boundary markers: No explicit boundary markers or 'ignore' instructions are provided in the firmware template for the audio stream. * Capability inventory: The assistant is configured to interact with Home Assistant via the api component, allowing control over connected smart home entities. * Sanitization: Input sanitization is not handled at the firmware level and relies on the downstream Home Assistant Assist pipeline.
Audit Metadata
Risk Level
SAFE
Analyzed
Feb 17, 2026, 06:08 PM