v0.1.2

Lark (Feishu) Voice

BenignClawScan verdict for this skill. Analyzed May 1, 2026, 8:22 AM.

Analysis

This instruction-only skill is coherent for sending Lark voice messages, with expected cautions around delegated messaging, TTS selection, ffmpeg conversion, and temporary audio files.

GuidanceThis skill appears safe for its stated purpose. Before installing, be aware that it can send Lark voice messages using the agent's available Lark messaging access, may invoke a separate TTS provider, and stores generated audio temporarily under /tmp/openclaw/.

Findings (5)

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

Abnormal behavior control

Checks for instructions or behavior that redirect the agent, misuse tools, execute unexpected code, cascade across systems, exploit user trust, or continue outside the intended task.

Tool Misuse and Exploitation

SeverityLowConfidenceHighStatusNote

SKILL.md

message(action=send, media="/tmp/openclaw/voice.opus", message="optional text")

The skill instructs the agent to use a messaging tool to send an audio file. This matches the skill purpose, but it is still a user-visible external action.

User impactThe agent may send a voice message through Lark when the user asks for that workflow.

RecommendationConfirm the intended recipient, message content, and context before using the skill to send voice messages.

Agentic Supply Chain Vulnerabilities

SeverityLowConfidenceHighStatusNote

SKILL.md

Scan installed skills for names containing `tts`, and check if the OpenClaw built-in `tts` tool is available.

The skill may invoke another installed TTS skill selected by name. That is central to the voice-generation purpose, but it means behavior can depend on the installed TTS provider.

User impactThe generated audio may be produced by a separate TTS skill or built-in tool, with its own behavior and data handling.

RecommendationUse trusted TTS sources, and choose explicitly when multiple TTS options are available.

Unexpected Code Execution

SeverityInfoConfidenceHighStatusNote

SKILL.md

ffmpeg -y -i /tmp/openclaw/input.wav -c:a libopus -b:a 24k -ar 24000 -ac 1 /tmp/openclaw/voice.opus

The skill documents a local ffmpeg command for audio conversion. This is expected and disclosed for the skill's purpose.

User impactThe agent may run ffmpeg locally to convert generated audio into a Lark-compatible voice format.

RecommendationEnsure ffmpeg is installed from a trusted source and that the input audio path is the intended generated file.

Permission boundary

Checks whether tool use, credentials, dependencies, identity, account access, or inter-agent boundaries are broader than the stated purpose.

Identity and Privilege Abuse

SeverityLowConfidenceHighStatusNote

SKILL.md

Use the `message` tool to send. The openclaw-lark plugin automatically detects the `.opus` extension

The skill relies on the Lark plugin's existing account or workspace authority to deliver messages. This is expected for a Lark messaging skill, and the artifact does not show credential collection or leakage.

User impactMessages will be sent using the Lark account or workspace permissions available to the agent.

RecommendationInstall only if you are comfortable with the agent using existing Lark messaging permissions for user-requested voice replies.

Sensitive data protection

Checks for exposed credentials, poisoned memory or context, unclear communication boundaries, or sensitive data that could leave the user's control.

Memory and Context Poisoning

SeverityLowConfidenceHighStatusNote

SKILL.md

saved to `/tmp/openclaw/`

The skill stores generated speech audio in a shared temporary directory, including a fixed output path. The artifact does not describe cleanup or retention.

User impactText converted to speech may remain as an audio file in the temporary OpenClaw directory after sending.

RecommendationAvoid sending highly sensitive content unless you are comfortable with temporary local audio files, or clean up /tmp/openclaw/ after use.