Skills
skills/steipete/clawdis/songsee/Gen Agent Trust Hub

songsee

Warn

Audited by Gen Agent Trust Hub on Feb 15, 2026

Risk Level: MEDIUMEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • EXTERNAL_DOWNLOADS (MEDIUM): The skill metadata triggers a binary installation via a third-party Homebrew tap (steipete/tap/songsee). This source is not included in the trusted organizational whitelist, making it an unverifiable dependency.
  • COMMAND_EXECUTION (LOW): The skill examples demonstrate execution of the songsee CLI with user-provided parameters and file paths.
  • PROMPT_INJECTION (LOW): The skill exhibits an indirect injection surface by ingesting untrusted external content (audio files via mp3/wav). 1. Ingestion points: CLI arguments and stdin in SKILL.md. 2. Boundary markers: Absent. 3. Capability inventory: CLI execution and file writing (-o flag). 4. Sanitization: Absent. The risk is considered low as the input data is binary audio rather than natural language.
Audit Metadata
Risk Level
MEDIUM
Analyzed
Feb 15, 2026, 11:16 PM