new-album
Pass
Audited by Gen Agent Trust Hub on Apr 9, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill implements a secure design by delegating file system operations and directory creation to a specialized tool (
bitwize-music-mcp), which centralizes and controls path resolution logic. - [SAFE]: No indicators of data exfiltration or unauthorized network communication were found. The skill does not perform any network requests or send data to external servers.
- [SAFE]: Access to local files is restricted to the skill's own configuration (
~/.bitwize-music/config.yaml) and template directories, aligning with its intended functionality. - [SAFE]: Input handling includes logic for the agent to parse and validate user arguments against a predefined list of valid genres before proceeding with file operations.
- [SAFE]: The skill author explicitly discourages manual file manipulation (mkdir, cp) in favor of the specialized MCP tool, reducing the risk of accidental privilege abuse.
Audit Metadata