ClawHub

Moark Tts

Security checks across malware telemetry and agentic risk

Overview

This is a coherent Gitee AI text-to-speech skill, but voice samples and API keys should be treated as sensitive.

Install only if you intend to use Gitee AI for speech generation. Use a scoped GITEEAI_API_KEY where possible, avoid private or internal audio URLs, do not submit someone else's voice without clear permission, and choose output paths deliberately.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (3)

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The skill explicitly supports voice cloning and voice-feature extraction using reference audio URLs, but it provides no user-facing consent, privacy, or biometric-data handling warning. Because voiceprints and reference speech can be sensitive personal data, the omission increases the risk of unauthorized cloning, privacy violations, and unsafe handling of third-party audio.

Missing User Warnings

Medium
Confidence
89% confidence
Finding
The routing guidance explicitly supports sending user-provided voice and prompt audio URLs to remote APIs, which can expose biometric voice data or sensitive recordings to third-party services without any user-facing disclosure or consent step. In a TTS/voice-feature skill, this is materially risky because voice samples are highly sensitive and the document normalizes forwarding them as ordinary parameters.

Missing User Warnings

Low
Confidence
82% confidence
Finding
The skill specifies that failover to alternate service paths is enabled by default, but it does not disclose this behavior to users. Even if intended for reliability, silent failover can route user text or audio to additional backends beyond the one the user expected, creating an undisclosed data-sharing path.

VirusTotal

61/61 vendors flagged this skill as clean.

View on VirusTotal