Is blucli safe?

The skill's metadata specifies installation of a Go binary via 'go install github.com/steipete/blucli/cmd/blu@latest'. This compiles and installs code from an external GitHub repository. While this is a standard Go installation pattern, it means the user is trusting the upstream repository author (steipete) to not include malicious code in the binary. The binary is installed at install time, not at skill-load time, and the Go module system provides some supply chain protections (checksumdb, module proxy).

The skill references an external homepage URL (https://blucli.sh) in the metadata. This is informational only and does not instruct the agent to fetch or interact with the URL. No prompt injection risk, but noted for completeness.

The skill instructs the agent to 'Confirm the target device before changing playback'. This is a reasonable safety measure to prevent unintended audio playback changes, not a manipulation attempt.

The 'blu devices' command performs local network discovery to find Bluesound players. While this is the intended functionality, it does mean the skill causes network scanning activity on the local subnet. This is expected behavior for the skill's stated purpose.

The skill has an extremely small surface area — only a SKILL.md with CLI usage instructions, a _meta.json with version info, and origin tracking. No source code, no scripts, no hooks, no submodules. The risk profile is dominated by the external Go binary install rather than anything in the skill files themselves.