Music Generation

Using provider tokens may incur account charges or expose API access if secrets are pasted into chat or stored insecurely.

The skill documents use of a provider API token for Replicate. This is expected for the stated purpose, but it gives access to a paid third-party service and is not declared in the registry credential metadata.

Running setup commands installs third-party packages on the user's machine, which can affect the local Python environment.

The documentation includes optional package installation for local music generation. This is purpose-aligned and not automatic, but it still asks the user to install external code.

Prompts, lyrics, or uploaded reference audio could be sent to third-party services under their terms and retention policies.

One provider example uploads a local audio file to an external API. This is aligned with melody-conditioned music generation, but users should understand that local audio may leave their device.

Unofficial APIs may have different security, privacy, pricing, reliability, or terms-of-service implications than the original provider.

The Suno provider guide explicitly points to unofficial third-party API wrappers. This is disclosed and relevant to the music generation purpose, but it introduces extra trust and provenance considerations.