Qwen Audio

This skill implements TTS/STT and largely does what it says, but take these precautions before installing or letting an agent run it: - Run it in an isolated environment (VM/container) because it will download and install heavy ML packages and models (torch, qwen-tts/asr, etc.), which use significant disk, memory, and network. - Ensure you have the 'uv' CLI and Python 3.10+ available — the SKILL.md uses 'uv run' but the registry metadata does not list 'uv' as a required binary. - Expect network access to Hugging Face and other endpoints (the code probes HF_ENDPOINT and can download models). If you need to avoid external network traffic, do not install or run the skill. - The script may auto-install missing Python packages via os.system('uv add ...') — this is a legitimate convenience but increases runtime privilege and attack surface. Review the pyproject.toml and the packages it will pull before proceeding. - Voices and other files are stored under ./voices/ and the skill will write to the skill folder; consider filesystem permissions and where you run it. - No credentials are requested, but environment variables (QWEN_AUDIO_DEVICE, QWEN_AUDIO_DTYPE, HF_ENDPOINT) influence behavior; these are not declared in the metadata and should be documented or locked down. If you need lower risk, ask the author to (1) declare required binaries and env vars explicitly, (2) remove runtime auto-installs or make them opt-in, and (3) document model download endpoints and disk requirements. Review the full scripts/qwen-audio.py before granting the skill autonomous invocation.