Skills
skills/alekseiul/sprut-agent-kit/youtube-seo/Gen Agent Trust Hub

youtube-seo

Pass

Audited by Gen Agent Trust Hub on Apr 16, 2026

Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill uses ffmpeg in scripts/extract-audio.sh to extract audio from video files provided by the user. This is a standard media processing operation and is consistent with the skill's primary purpose of preparing content for transcription.
  • [REMOTE_CODE_EXECUTION]: The workflow mentions executing a transcription script (transcribe.sh) located in a relative path {skillsDir}/openai-whisper-api/. This references a local dependency within the agent environment rather than downloading or executing untrusted code from the internet.
  • [DATA_EXFILTRATION]: No unauthorized network operations or exfiltration patterns were found. The skill suggests a community link to Telegram (t.me/YOUR_CHANNEL), which is standard for social media marketing metadata.
  • [PROMPT_INJECTION]: The SKILL.MD file contains formatting rules and style guides (e.g., 'Do not use long dashes', 'Max 1 emoji'). These are legitimate formatting constraints for a copywriter-style agent and do not attempt to bypass core AI safety filters or hijack agent behavior.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 16, 2026, 05:28 PM
Security Audit — agent-trust-hub — youtube-seo