ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

Elevenlabs Voice Agent

v1.0.0

Build and manage ElevenLabs Conversational AI voice agents with Twilio phone integration. Use when creating AI phone agents (cold callers, appointment setter...

0· 93·0 current·0 all-time
by@boris148
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Suspicious
medium confidence
!
Purpose & Capability
The skill's stated purpose is to build/manage ElevenLabs voice agents with Twilio integration — that legitimately requires ElevenLabs API keys and Twilio credentials. However, the registry metadata lists no required environment variables or primary credential. That omission is inconsistent: a manager/automation skill would normally declare the API keys it needs or provide clear instructions for secure provisioning.
Instruction Scope
The SKILL.md stays within the expected domain (ElevenLabs API endpoints, voice/LLM settings, Twilio integration steps, sales-framework guidance). It instructs the operator to obtain Twilio Account SID + Auth Token and to use ElevenLabs APIs, but it does not instruct reading unrelated files or system secrets. Still, it gives no guidance about how credentials should be supplied/stored or used safely, which expands agent discretion.
Install Mechanism
This is an instruction-only skill with no install spec and no code files, so it does not write or execute third-party code on install — that is the lowest risk install profile.
!
Credentials
The runtime instructions reference sensitive credentials (Twilio SID/Auth Token and implicitly an ElevenLabs API key) but the skill declares none. That mismatch is disproportionate: either the skill should list and justify required env vars (and a primary credential), or it should be explicit how/when the agent will request those secrets. Lack of declared credentials makes it unclear how the skill will obtain or use them.
Persistence & Privilege
always is false and the skill is user-invocable only. It does not request persistent system-level privileges or modifications to other skills, so its persistence footprint is minimal.
What to consider before installing
This skill appears to be a how-to for ElevenLabs + Twilio phone agents and is instruction-only (no code), but it does not declare the sensitive credentials it clearly expects you to use. Before installing or running it: 1) ask the publisher (or the marketplace) for a source/homepage and an explicit list of required credentials (ElevenLabs API key, Twilio SID/Auth Token) and how they are expected to be provided; 2) only supply secrets via a secure provisioning method (not pasted into chat); 3) prefer skills that declare required env vars and a primary credential; 4) if you must use it, run it with the least privilege necessary and monitor network calls during initial use. The missing provenance (no homepage/source) and the credentials mismatch are the primary reasons to treat this as suspicious rather than benign.

Like a lobster shell, security has layers — review code before you run it.

latestvk9767a77sncv96hmd6nv2cjd4h83mx34

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments