Back to skill
Skillv1.0.6
ClawScan security
VoiceClaw · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignFeb 27, 2026, 2:46 PM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- VoiceClaw's files, scripts, and SKILL.md are internally consistent with its stated purpose: offline local STT/TTS using whisper, piper, and ffmpeg, and it does not request unrelated credentials or network access.
- Guidance
- This skill appears to be what it says: an offline STT/TTS helper that runs local whisper/piper/ffmpeg. Before installing: ensure you obtain whisper, piper, ffmpeg, and voice/model files from trusted sources; verify the model files exist (scripts will error otherwise); note that any one-time model download (documented in README) will contact the network only if you run the manual curl/git commands yourself; review and test the included scripts in a safe environment (they operate on /tmp and local files). If you need absolute assurance, inspect the whisper and piper binaries you will use (third-party native binaries can have their own risks). Finally, be aware of the minor doc mismatch: the project mentions an "auto-download on first use" but the provided scripts do not perform automatic downloads — model provisioning is manual or handled by the underlying whisper/piper install you choose.
Review Dimensions
- Purpose & Capability
- okName/description (local STT/TTS) matches required binaries (whisper, piper, ffmpeg) and included scripts. Declared env vars (WHISPER_BIN, WHISPER_MODEL, PIPER_BIN, VOICECLAW_VOICES_DIR) are appropriate and optional for locating binaries/models.
- Instruction Scope
- noteRuntime instructions and the two scripts operate on local files (input audio, local model files, /tmp) and call only the declared binaries. SKILL.md and README consistently instruct local usage. One minor inconsistency: README/SKILL.md mention the Whisper model may be "auto-downloaded on first use," but the shipped scripts do not perform any automatic download — model download is a manual/optional step documented in README. This is informational rather than a security mismatch.
- Install Mechanism
- okNo install spec in registry (instruction-only), so nothing is automatically downloaded or executed by the skill itself. README documents optional manual install routes (git clone, curl from GitHub releases, ClawHub). Those manual commands point to expected project hosts and are not executed by the skill.
- Credentials
- okNo credentials or sensitive environment variables are required. Optional env vars relate directly to binary/model paths. The skill does not request unrelated secrets or system config paths.
- Persistence & Privilege
- okSkill is not set to always:true and is user-invocable only. It does not modify other skills or system-wide configs. Scripts write temporary files under /tmp and return output paths; they do not persist credentials or install background services.