camsnap
Warn
Audited by Gen Agent Trust Hub on Mar 8, 2026
Risk Level: MEDIUMEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONCREDENTIALS_UNSAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill's metadata specifies an installation requirement for the
camsnapbinary via a third-party Homebrew tap (steipete/tap/camsnap). This source is not recognized as a trusted organization or well-known service. - [COMMAND_EXECUTION]: The skill is designed to execute the
camsnapcommand-line utility and requires theffmpegbinary to be present on the system PATH to process video clips and snapshots. - [CREDENTIALS_UNSAFE]: The provided setup instructions demonstrate passing sensitive camera credentials, including usernames and passwords, directly as command-line arguments (
--userand--pass). This practice is insecure as it exposes credentials in plain text within shell history files and system process lists.
Audit Metadata