Skills
skills/voxflowstudio/skills/hub/Gen Agent Trust Hub

hub

Pass

Audited by Gen Agent Trust Hub on May 17, 2026

Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSDATA_EXFILTRATION
Full Analysis
  • [COMMAND_EXECUTION]: The skill makes extensive use of the voxflow CLI tool for all core functionalities, including voice synthesis (say), long-form narration (narrate), and story generation (story). It also uses system-specific commands like open (macOS) or xdg-open (Linux) to play generated audio files.
  • [EXTERNAL_DOWNLOADS]: The skill instructs the agent to install the voxflow package globally via npm install -g voxflow. Additionally, the voxflow add command is used to download and install voice presets or pipeline templates from a remote registry.
  • [DATA_EXFILTRATION]: The voxflow feedback command is designed to exfiltrate data (bug reports and system info) to GitHub. It uses the gh CLI to programmatically create issues, which involves sending local state and user-supplied descriptions to an external service.
Audit Metadata
Risk Level
SAFE
Analyzed
May 17, 2026, 11:49 PM
Security Audit — agent-trust-hub — hub