voxflow
Pass
Audited by Gen Agent Trust Hub on Apr 24, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill instructs the agent to install and use the
voxflowCLI package from the official NPM registry and interact with the vendor's API atapi.voxflow.studio. These are verified resources belonging to the skill author. - [SAFE]: Command execution is limited to standard tool usage (
voxflow say,voxflow narrate, etc.) and system utilities likeopenfor media playback. These actions are within the scope of the skill's purpose. - [SAFE]: Authentication tokens are managed using standard local configuration files (
~/.config/voxflow/token.json), which is standard practice for CLI-based service authentication. - [SAFE]: While the skill processes user-supplied text and external files, no malicious injection patterns or attempts to override agent safety protocols were detected.
Audit Metadata