Yummy Gen Voice
Security checks across malware telemetry and agentic risk
Overview
This is a straightforward Gemini text-to-speech helper that installs and uses an external CLI to create WAV audio files.
Before installing, confirm you trust the @yummysource/yummycli npm package and use an appropriately scoped Gemini API key. Expect text submitted for speech synthesis to be processed by Gemini through the CLI and expect generated .wav files to be written locally.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
66/66 vendors flagged this skill as clean.