VoiceClaw
Security checks across malware telemetry and agentic risk
Overview
voiceclaw appears to be a local speech input/output helper with no substantiated signs of hidden data transfer or unsafe persistence.
Before installing, confirm you are comfortable adding local voice tooling and any required audio models or binaries. Avoid feeding sensitive recordings unless you have verified the installed scripts remain local-only in your environment.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
66/66 vendors flagged this skill as clean.