Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
Listenhub
v1.0.0Explain anything — turn ideas into podcasts, explainer videos, or voice narration. Use when the user wants to "make a podcast", "create an explainer video",...
⭐ 1· 1.2k·13 current·13 all-time
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Suspicious
high confidencePurpose & Capability
Name/description (podcast/video/tts/image generation) matches what the scripts implement (endpoints for podcast/flow-speech/storybook and an image generator). However the registry metadata declares no required env vars or config paths while the scripts clearly require and use LISTENHUB_API_KEY and LISTENHUB_OUTPUT_DIR. The skill therefore omits key runtime requirements from its manifest (incoherent).
Instruction Scope
SKILL.md instructs the agent to only call the provided scripts (which is fine) but also encourages storing/pulling an API key from shell rc files and using the scripts to auto-save it. The scripts do more than just call an API: they read/write shell rc files, download updates, and may auto-install dependencies. Those actions go beyond pure content generation and are not made explicit in the registry metadata or clearly justified in the description.
Install Mechanism
There is no install spec in the registry, but the scripts include a self-update mechanism (lib.sh) that downloads replacements from raw.githubusercontent.com and the GitHub API and atomically replaces local script files. Using GitHub raw content is a commonly used source, but automatic runtime replacement of the skill's code is a notable behavior and increases risk. generate-image.sh also contains logic to auto-install missing tools via brew/apt/yum/choco (and may invoke sudo package installs), which is a high-impact operation if invoked unexpectedly.
Credentials
The skill manifest lists no required environment variables, but scripts require LISTENHUB_API_KEY (and optionally LISTENHUB_OUTPUT_DIR). The scripts attempt to load the API key from multiple shell rc files and will write export lines into a shell rc during setup. Requesting and writing a long-lived API key to user shell profiles is disproportionate to an instruction-only manifest and should have been declared explicitly.
Persistence & Privilege
The skill does not request platform-wide 'always' privilege, but its lib.sh will automatically download and replace its own scripts when a newer remote version exists (self-updating capability). The scripts also modify user shell rc files to save API keys and may auto-install system packages. Combined, these allow code and configuration changes on the host and therefore represent elevated persistence/privilege compared to a simple command wrapper.
What to consider before installing
This skill's code largely matches its description, but it hides several high-impact behaviors: (1) it needs a LISTENHUB_API_KEY though the registry metadata doesn't declare it; the scripts will read and can write your ~/.zshrc / ~/.bashrc to store that key; (2) the scripts auto-update themselves from GitHub raw URLs at runtime and will replace local files; (3) the image script can auto-install missing packages (brew/apt/yum/choco), which may run privileged package-manager commands. Before installing/use: inspect the scripts yourself (you already have them), and only run them on a non-production machine or in a container/VM; back up your shell rc files; prefer entering the API key manually rather than letting scripts write to your profile; verify you trust the remote domains (api.marswave.ai, api.labnana.com, and the GitHub repo used for updates); if you need stronger assurance, ask the author to (a) declare LISTENHUB_API_KEY in the manifest, (b) make auto-update opt-in, and (c) stop auto-writing to shell rc or make that explicit and user-confirmed.Like a lobster shell, security has layers — review code before you run it.
latestvk978h633amr5qhnqwb36t8839n81xf6q
License
MIT-0
Free to use, modify, and redistribute. No attribution required.