ClawHub

speech-recognition

Security checks across malware telemetry and agentic risk

Overview

This speech-to-text skill is coherent and disclosed, but it sends chosen audio files to SiliconFlow for transcription.

Install this only if you want SiliconFlow-based transcription. Use a dedicated or revocable API key, and only transcribe audio you are comfortable sending to SiliconFlow, especially voice messages or meeting recordings.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (3)

Vague Triggers

Medium
Confidence
82% confidence
Finding
The description says the skill triggers when users send voice messages, audio files, or when they 'need to transcribe audio', which is broad enough to overlap with many common user requests. Overly loose activation can cause the agent to invoke this skill in unintended contexts, potentially routing user content to an external transcription API without sufficiently clear user intent.

External Transmission

Medium
Category
Data Exfiltration
Content
with open("/path/to/audio.mp3", "rb") as f:
    audio_data = f.read()

response = requests.post(
    "https://api.siliconflow.cn/v1/audio/transcriptions",
    headers={"Authorization": f"Bearer {api_key}"},
    files={"file": ("audio.mp3", audio_data, "audio/mpeg")},
Confidence
97% confidence
Finding
requests.post( "https://

External Transmission

Medium
Category
Data Exfiltration
Content
with open('/tmp/audio.mp3', 'rb') as f:
    audio_data = f.read()

response = requests.post(
    'https://api.siliconflow.cn/v1/audio/transcriptions',
    headers={'Authorization': f'Bearer {api_key}'},
    files={'file': ('audio.mp3', audio_data, 'audio/mpeg')},
Confidence
97% confidence
Finding
requests.post( 'https://

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal