bg-music
Pass
Audited by Gen Agent Trust Hub on Jul 10, 2026
Risk Level: SAFEDATA_EXFILTRATIONCOMMAND_EXECUTIONPROMPT_INJECTIONEXTERNAL_DOWNLOADS
Full Analysis
- [DATA_EXFILTRATION]: The scripts
generate_bgm.pyandsetup_key.pyexplicitly search for and read API tokens from configuration files belonging to other related skills (e.g.,sound-effects,avatar-video-reel, andbrand-asset-studio) located in the user's home directory. This constitutes cross-skill data exposure. - [COMMAND_EXECUTION]: The skill uses
subprocess.runto invokeffmpegandffprobefor audio post-processing, such as applying fade-in/fade-out effects and checking file duration. These calls use list-based arguments which mitigate common shell injection risks. - [PROMPT_INJECTION]: The
enhance_promptfunction ingenerate_bgm.pytakes user-supplied descriptions and interpolates them directly into a prompt string for the ElevenLabs Music model. This represents an indirect prompt injection surface where untrusted data enters the agent context. - [EXTERNAL_DOWNLOADS]: The skill downloads generated audio files from Replicate's servers using
urllib.request.urlretrieveonce the model processing is complete.
Audit Metadata