Back to skill
Skillv1.0.7
ClawScan security
Speak Turbo - Talk to your Claude 90ms latency! · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignFeb 21, 2026, 11:29 AM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill's code, docs, and runtime instructions are consistent with a local TTS daemon/CLI: it requires no external credentials, binds to localhost, and its install/runtime behavior matches the described purpose.
- Guidance
- This package appears coherent for a local, privacy-focused TTS service. Before installing, consider: (1) install.sh will run pip install and optionally cargo build — these commands will fetch packages from upstream registries (review pocket-tts and other dependencies before running). (2) The installer writes a CLI into ~/.local/bin and creates ~/.speakturbo (daemon PID and optional config). If you run the daemon, it listens only on 127.0.0.1:7125 but you should still ensure you trust the dependencies (pocket-tts) that implement the TTS model. (3) The output-file allowlist is enforced via realpath checks; be cautious of potential TOCTOU race scenarios when writing files if you allow arbitrary directories. (4) If you need stronger assurance, inspect pocket-tts and the included files locally, run the test-suite, or run the daemon in a restricted environment (container or dedicated user) before giving it broader access.
- Findings
[no_regex_findings] expected: Static regex-based pre-scan returned no findings. This does not prove safety, but there are no obvious code-level red flags from the pattern scanner.
Review Dimensions
- Purpose & Capability
- okName/description (low-latency local TTS for agents) matches the code and SKILL.md: a local FastAPI daemon (pocket-tts) + Rust/Python CLI that streams audio from http://127.0.0.1:7125. Required capabilities (none) align with a purely local service.
- Instruction Scope
- okSKILL.md and CLI/daemon code stick to the stated scope: starting a local daemon, calling GET /tts and /health on localhost, validating input, and writing audio to allowed paths. There are no instructions to read unrelated files, exfiltrate secrets, or call external endpoints from the runtime code (aside from installing dependencies during setup).
- Install Mechanism
- noteThe registry entry has no formal install spec, but the bundle includes an install.sh which pip-installs dependencies and may build a Rust binary. pip/cargo will fetch packages from upstream registries if run by the user — this is expected for native Python/Rust projects but is a point for users to review (see guidance). No downloads from obscure/personal servers are embedded.
- Credentials
- okNo environment variables, credentials, or secret/config paths are requested. The skill writes to ~/.local/bin and ~/.speakturbo and creates a PID file under the user's home directory, which is reasonable for a local CLI/daemon. No unrelated service credentials are required.
- Persistence & Privilege
- noteThe skill is not force-enabled (always: false) and can be invoked by the agent. It persists minimally under the user's home (~/.speakturbo, ~/.local/bin) and writes a daemon PID file; it does not modify other skills or system-wide configs. Users should be aware of files created under their home and the optional daemon background process.