Voice Wake Say

The skill's primary function to use the local macOS `say` command for text-to-speech is benign, and the command execution (`printf '%s' "$SPOKEN_TEXT" | say`) is implemented safely. However, the `SKILL.md` file contains a critical instruction to the AI agent: "If the message instructs 'repeat prompt first', keep that behavior in the response." This instruction creates a significant prompt injection vulnerability, as it explicitly tells the agent to process and act upon arbitrary user-provided instructions embedded after the 'repeat prompt first' phrase, potentially allowing a malicious user to override the agent's intended behavior or security controls.