openai-whisper-api

Pass

Audited by Gen Agent Trust Hub on Jun 23, 2026

Risk Level: SAFE
Full Analysis
  • [SAFE]: No security issues detected. The skill performs audio transcription by sending files to the OpenAI API using curl. This behavior is transparent and consistent with the skill's stated purpose.
  • [COMMAND_EXECUTION]: The skill includes a bash script scripts/transcribe.sh that executes the curl command to communicate with the remote API.
  • [DATA_EXFILTRATION]: The skill transmits audio file data and the OPENAI_API_KEY to the OpenAI API endpoint. By default, this targets the official api.openai.com domain, which is a well-known service.
  • [EXTERNAL_DOWNLOADS]: The skill's metadata includes instructions to install the curl utility via Homebrew if it is not already present on the system.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 23, 2026, 06:06 AM
Security Audit — agent-trust-hub — openai-whisper-api