Bailian TTS

Security checks across malware telemetry and agentic risk

Overview

This skill is a straightforward Alibaba Bailian/DashScope text-to-speech helper with expected cloud API use and a URL-download hardening gap, but no evidence of hidden, destructive, or deceptive behavior.

Install only if you are comfortable sending the text you synthesize to Alibaba Bailian/DashScope under your account. Use a dedicated API key, avoid submitting secrets or regulated personal data unless approved, and consider network restrictions if provider-returned download URLs are a concern.

SkillSpector

By NVIDIA

Vulnerability Patterns

Taint TrackingDirect Taint Flow, Variable-Mediated Taint Flow, Credential Exfiltration Chain
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Tainted flow: 'audio_url' from os.getenv (line 90, credential/environment) → requests.get (network output)

Critical

Category: Data Flow
Content: audio_url = output['audio']['url'] # 下载音频 audio_response = requests.get(audio_url, timeout=60) if audio_response.status_code == 200: with open(output_file, "wb") as f: f.write(audio_response.content)
Confidence: 91% confidence
Finding: audio_response = requests.get(audio_url, timeout=60)

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal