Back to skill
Skillv0.1.0
ClawScan security
Sherpa ONNX TTS · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
SuspiciousMar 30, 2026, 7:04 AM
- Verdict
- suspicious
- Confidence
- medium
- Model
- gpt-5-mini
- Summary
- The skill's requirements and downloads broadly match a local sherpa-onnx TTS, but the runtime instructions claim a wrapper lives in the skill folder even though no code or wrapper file is present in the package — an incoherence you should understand before installing.
- Guidance
- Before installing: (1) Confirm where the wrapper/binary actually comes from — SKILL.md references a wrapper in the skill folder but the package contains no code; ask the author for the missing wrapper or a corrected instruction. (2) Verify the GitHub release URLs and check checksums/signatures of downloaded archives if possible; extracted runtime binaries will be executed locally. (3) Inspect the extracted runtime and model files before running to ensure they contain only the expected executables/models. (4) Only set SHERPA_ONNX_RUNTIME_DIR and SHERPA_ONNX_MODEL_DIR to paths you control; do not point them to unrelated system config or credential files. If the maintainer clarifies the missing wrapper and provides reproducible install artifacts, the package would appear coherent with its purpose.
Review Dimensions
- Purpose & Capability
- okName, description, and required env vars (SHERPA_ONNX_RUNTIME_DIR, SHERPA_ONNX_MODEL_DIR) align with an offline sherpa-onnx TTS. The declared downloads (sherpa-onnx runtime and TTS model) are consistent with the stated purpose.
- Instruction Scope
- concernSKILL.md instructs editing ~/.openclaw/openclaw.json and running a wrapper located in the skill folder ({baseDir}/bin/sherpa-onnx-tts). However, the skill manifest lists only SKILL.md and no wrapper or bin files — either the wrapper is missing from the package or the instructions are inaccurate. This mismatch is scope/integrity-relevant and should be clarified.
- Install Mechanism
- noteInstall metadata (embedded in SKILL.md) uses direct downloads from GitHub releases and extracts tar.bz2 archives into runtime/models directories. GitHub releases are a reasonable source, but extract=true means archives will be written to disk — verify release authenticity and contents before trusting/executing binaries. Also note a registry-level claim of “no install spec” conflicts with the install entries embedded in SKILL.md.
- Credentials
- okOnly two environment variables are required, and they directly map to runtime and model locations required by sherpa-onnx. SKILL.md mentions optional vars (e.g., SHERPA_ONNX_MODEL_FILE) not listed as required — minor inconsistency but not inherently dangerous.
- Persistence & Privilege
- okalways is false and the skill does not request system-wide privileges. It asks the user to add a PATH entry and update the user's OpenClaw config (~/.openclaw/openclaw.json), which is a normal local configuration change.