v1.0.2

Elevenlabs Music

BenignClawScan verdict for this skill. Analyzed May 1, 2026, 7:52 AM.

Analysis

The skill appears to do what it says—generate music through ElevenLabs—but users should note it uses their ElevenLabs API key and paid quota, pulls Python packages with uv, and includes an off-platform paid-service advertisement.

GuidanceInstall only if you are comfortable providing an ElevenLabs API key and having prompts sent to ElevenLabs for music generation. Expect account quota or paid-plan usage, avoid putting sensitive information in prompts, and treat the WeChat/Telegram paid-service advertisement as separate from the skill itself.

Findings (3)

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

Abnormal behavior control

Checks for instructions or behavior that redirect the agent, misuse tools, execute unexpected code, cascade across systems, exploit user trust, or continue outside the intended task.

Agentic Supply Chain Vulnerabilities

SeverityLowConfidenceHighStatusNote

scripts/generate_music.py

# dependencies = [
#     "elevenlabs>=1.0.0",
#     "python-dotenv",
# ]

The script relies on uv to resolve runtime dependencies, and the package versions are not pinned exactly. This is common for small utility scripts but means future dependency updates could change behavior.

User impactA later package update could alter runtime behavior or introduce dependency risk.

RecommendationPrefer pinned or locked dependency versions for repeatable installs, especially when using an API key tied to a paid account.

Human-Agent Trust Exploitation

SeverityInfoConfidenceHighStatusNote

SKILL.md

## 💰 付费服务
...
| 短视频 BGM | ¥300/首 | 30 秒定制音乐 |
...
**联系**: 微信/Telegram 私信，备注"音乐定制"

The skill documentation includes a separate off-platform paid custom-music advertisement. It is visible and not tied to code execution, but it is not necessary for using the ElevenLabs API script.

User impactUsers could confuse the separate paid service offer with the requirements for running the skill.

RecommendationTreat any off-platform payment or private contact as separate from the skill's API functionality and verify it independently before paying.

Permission boundary

Checks whether tool use, credentials, dependencies, identity, account access, or inter-agent boundaries are broader than the stated purpose.

Identity and Privilege Abuse

SeverityLowConfidenceHighStatusNote

scripts/generate_music.py

load_dotenv()
...
api_key = os.getenv("ELEVENLABS_API_KEY")
...
client = ElevenLabs(api_key=api_key)

The script reads the user's ElevenLabs API key and uses it to call the ElevenLabs client. This is expected for the stated purpose, but it gives the skill access to a paid account and may consume quota or credits.

User impactGenerating music can use the user's ElevenLabs account quota or paid plan access.

RecommendationUse a dedicated, revokable ElevenLabs API key if possible, monitor account usage, and remove or rotate the key when no longer needed.