ai-music-generation
Pass
Audited by Gen Agent Trust Hub on Apr 16, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: Fetches additional music capabilities and installation instructions from official inference-sh GitHub repositories.
- [COMMAND_EXECUTION]: Executes the
infshCLI tool for music generation. Access is restricted specifically to this command using theallowed-toolsdirective, which provides a layer of security by preventing unauthorized shell command execution. - [PROMPT_INJECTION]: The skill takes user input for music prompts and lyrics. While this constitutes an ingestion surface for indirect prompt injection, the risk is mitigated by the restricted execution environment. Ingestion points: User-provided text for
promptandlyricsstrings in SKILL.md. Boundary markers: None. Capability inventory: Access to theinfshCLI via restricted Bash. Sanitization: No specific input validation or escaping defined.
Audit Metadata