piper
Warn
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: MEDIUMCOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- [COMMAND_EXECUTION] (MEDIUM): Potential shell command injection. Several bash snippets in SKILL.md (Step 3 and Step 4) use parameters such as ${voice}, $speed, $sentence_silence, and $volume directly in shell commands without double quotes. If these parameters are supplied with shell metacharacters (e.g., semicolons, pipes), it could lead to arbitrary command execution.
- [EXTERNAL_DOWNLOADS] (SAFE): The skill provides instructions for downloading Piper voice models from Hugging Face (huggingface.co). This is a trusted source, and the downloaded items are data files (.onnx), not executable scripts.
- [DATA_EXFILTRATION] (LOW): The skill exposes the internal directory structure and username of the author's local machine (/Users/katiemulliken/) through hardcoded absolute paths. While not an active exfiltration attempt, it is a poor security practice that leaks system metadata.
Audit Metadata