Back to skill
Skillv1.0.1
ClawScan security
U2-audio-file-transcriber · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignMar 17, 2026, 6:02 AM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill's code, declared requirements, and runtime instructions are consistent with a wrapper that uploads audio to UniSound/UniCloud ASR and returns transcripts; nothing in the package indicates unrelated or hidden behavior.
- Guidance
- This package appears to be a straightforward UniSound ASR client. Before installing: (1) only provide UNISOUND_APPKEY/UNISOUND_SECRET from a trusted UniSound account and avoid using production-sensitive audio with the provided UAT test credentials; (2) verify or set UNISOUND_BASE_URL if you intend to use a production endpoint instead of the included UAT host; (3) understand that the skill uploads audio to UniSound servers (no local transcription or fallback is allowed by the SKILL.md); (4) review the script if you need stricter privacy controls (e.g., change endpoints, remove hard-coded vocab_id, or add encryption in transit if required). If any of these are unacceptable (uploading sensitive audio to an external ASR), do not use the skill.
Review Dimensions
- Purpose & Capability
- okName and description (UniSound ASR audio transcriber) match the included script and the declared requirements (python3 and UniSound API credentials). The script communicates only with UniSound endpoints (configurable base_url) and implements an upload→transcribe→poll workflow appropriate for the stated purpose.
- Instruction Scope
- noteSKILL.md restricts the agent to calling the provided script and to never attempt local transcription or alternate services; this is coherent with a policy that forces use of the UniSound API, but it is prescriptive. The SKILL.md and script both upload audio to UniSound servers (the doc states no third-party endpoints are used). The instructions intentionally prevent fallback/local processing — not a security flaw but an operational restriction the user should understand.
- Install Mechanism
- okThere is no installer in the registry metadata (instruction-only). The README directs users to pip install the small requirements.txt (requests and urllib3) — a standard, low-risk dependency installation from well-known Python packages.
- Credentials
- noteDeclared required env vars are UNISOUND_APPKEY and UNISOUND_SECRET (primaryEnv = UNISOUND_SECRET), which are appropriate for an API client. The runtime code may also read optional env vars such as UNISOUND_BASE_URL, UNISOUND_USERID, UNISOUND_AUDIOTYPE, and UNISOUND_USE_HOT_DATA; these are reasonable but not listed in requires.env. The number and sensitivity of required variables are proportionate to the task.
- Persistence & Privilege
- okThe skill does not request persistent/always-on inclusion (always:false) and does not modify other skills or system-wide settings. It simply runs a CLI script when invoked.