Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
Slybroadcast Voicemail
v1.0.0Send Slybroadcast ringless voicemail campaigns from OpenClaw/LLMs using CLI or MCP, including AI voice generation (ElevenLabs or generic HTTP voice API) and...
⭐ 0· 667·1 current·1 all-time
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Suspicious
high confidencePurpose & Capability
The SKILL.md describes a Slybroadcast voicemail sender (including optional ElevenLabs TTS), which is coherent with the name. However the registry metadata lists no required env vars, binaries, or code files while the SKILL.md requires SLYBROADCAST_* credentials, ElevenLabs keys, and an npm workspace @fub/slybroadcast-voicemail. The declared manifest (no code, no install) does not align with what the instructions expect.
Instruction Scope
Instructions ask the agent/operator to run npm workspace commands, start an MCP server, stage local/AI-generated audio to a public URL, and rely on multiple environment variables. The skill's instructions reference filesystem staging and public URLs (possible data exfiltration vector) and expect an npm package that is not present in the bundle. The instructions also allow making audio files publicly reachable for Slybroadcast to fetch, which could leak sensitive recordings if misused.
Install Mechanism
There is no install spec and no code files, yet the SKILL.md instructs running npm workspace commands referencing @fub/slybroadcast-voicemail. That implies the skill expects external code to be present or installed, but provides no guidance where to obtain it. This gap is incoherent and increases risk (agent or user might be prompted to fetch/execute third-party code from unknown sources).
Credentials
The environment variables listed in SKILL.md (SLYBROADCAST_* plus ELEVENLABS_* and staging-related variables) are appropriate for the stated functionality, but none are declared in the skill metadata. The mismatch between declared and required env vars is a red flag. Requiring staging of audio to a public URL also broadens the data-sensitivity surface (public exposure of recordings).
Persistence & Privilege
The skill does not request always:true and is user-invocable; model invocation is allowed (normal). It does not claim to modify other skills or require elevated persistent system privileges in the manifest.
What to consider before installing
Do not provide credentials or deploy this skill yet. The runtime docs require Slybroadcast credentials, ElevenLabs keys, and an npm workspace package, but the skill package contains no code or install instructions and lists no required env vars—this inconsistency could lead you to run or fetch untrusted code or expose voicemail files publicly. Ask the publisher for: (1) the source repository or official homepage, (2) an install spec (where to get @fub/slybroadcast-voicemail), and (3) the actual code to review. If you must test, use throwaway/least-privilege Slybroadcast and ElevenLabs keys, keep audio staging on a controlled domain, and avoid uploading sensitive recordings. Prefer skills with verifiable source and explicit install instructions before trusting secrets.Like a lobster shell, security has layers — review code before you run it.
latestvk976v4qm0syetv2q7pc888ep4981bs4cslybroadcastvk9714h3ezqs3b73e8k9w4xwykh815hjjvoicemailvk9714h3ezqs3b73e8k9w4xwykh815hjj
License
MIT-0
Free to use, modify, and redistribute. No attribution required.