Vocabulary Lookup
Security checks across static analysis, malware telemetry, and agentic risk
Overview
This appears to be a local, read-only vocabulary lookup tool, with only a low-risk note to verify any optional dependency or downloaded dictionary file.
This skill looks safe for local vocabulary lookup. Before using optional audio support or an external dictionary file, verify the package and file source, and point --dict-path only to the intended dictionary file.
Static analysis
No static analysis findings were reported for this release.
VirusTotal
VirusTotal findings are pending for this skill version.
Risk analysis
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
If the user chooses to install the optional package or download the dictionary file, they should use a trusted source.
The skill documentation references an optional external package and a dictionary file obtained outside the included artifact set. This is a provenance note rather than a concern because the included Python code does not import edge-tts, make network requests, or execute downloaded content.
"package": "edge-tts", "label": "Install edge-tts (optional, for audio)" ... "词典文件 `dictionary-by-gpt4.json` 可通过以下方式获取:- 联系 Maosi English Team - 或从 GitHub 仓库下载"
Install optional dependencies only if needed, and obtain the dictionary file from a source you trust before pointing the skill to it.