Security audit

IceCube Voice Clone

Security checks across malware telemetry and agentic risk

Overview

This is an instruction-only voice-cloning guide with real privacy and consent considerations, but no hidden code, automatic actions, or unrelated access.

Install only if you intend to work on authorized voice cloning. Use your own voice or voices with clear permission, review each provider's retention and deletion policies before uploading audio, protect any API keys, and disclose AI-generated audio clearly.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (2)

Vague Triggers

Medium

Confidence: 92% confidence
Finding: The manifest description includes very broad trigger phrases such as 'AI 语音' and 'voice clone', which can cause the skill to activate in contexts broader than intended. Overbroad invocation can route unrelated user conversations into a skill that discusses voice cloning and third-party services, increasing privacy, consent, and misuse risk.

Missing User Warnings

Medium

Confidence: 95% confidence
Finding: The skill explains how to upload voice samples to third-party cloning platforms but does not place a clear warning near those instructions about biometric privacy, retention, consent, and potential downstream misuse. Because voice samples are sensitive biometric-like data, missing contextual warnings can lead users to share their own or others' audio without understanding legal and privacy consequences.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.