openai-whisper-api
Pass
Audited by Gen Agent Trust Hub on Jun 23, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No security issues detected. The skill performs audio transcription by sending files to the OpenAI API using
curl. This behavior is transparent and consistent with the skill's stated purpose. - [COMMAND_EXECUTION]: The skill includes a bash script
scripts/transcribe.shthat executes thecurlcommand to communicate with the remote API. - [DATA_EXFILTRATION]: The skill transmits audio file data and the
OPENAI_API_KEYto the OpenAI API endpoint. By default, this targets the officialapi.openai.comdomain, which is a well-known service. - [EXTERNAL_DOWNLOADS]: The skill's metadata includes instructions to install the
curlutility via Homebrew if it is not already present on the system.
Audit Metadata