Skills
skills/inference-sh/skills/elevenlabs-music/Gen Agent Trust Hub

elevenlabs-music

Pass

Audited by Gen Agent Trust Hub on May 12, 2026

Risk Level: SAFE
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill provides a link to installation instructions for the belt CLI tool hosted on the vendor's official GitHub repository (inference-sh/skills). This is a standard setup procedure for the vendor's platform.
  • [COMMAND_EXECUTION]: The skill uses the belt CLI to interact with ElevenLabs apps. Access to this tool is correctly scoped and limited in the allowed-tools frontmatter configuration.
  • [PROMPT_INJECTION]: The skill processes user-provided text for music generation. This represents a potential indirect prompt injection surface.
  • Ingestion points: Untrusted data enters via the prompt parameter in the belt app run commands.
  • Boundary markers: Input is structured as a JSON string within the shell command arguments.
  • Capability inventory: The skill uses the belt command-line tool to execute remote applications on the inference.sh platform.
  • Sanitization: No explicit sanitization or filtering of the prompt text is mentioned in the instructions.
Audit Metadata
Risk Level
SAFE
Analyzed
May 12, 2026, 06:18 PM