v1.0.0

Moark Tts

BenignClawScan verdict for this skill. Analyzed May 1, 2026, 8:11 AM.

Analysis

This appears to be a purpose-aligned Gitee AI text-to-speech skill, but it uses your Gitee AI API key and sends requested text or audio inputs to Gitee AI.

GuidanceThis skill is reasonable to install if you trust the publisher and intend to use Gitee AI TTS. Before using it, protect your GITEEAI_API_KEY, prefer setting it as an environment variable, only submit text/audio/voice samples you are comfortable sending to Gitee AI, and disable failover or choose output paths explicitly if those details matter for your workflow.

Findings (3)

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

Abnormal behavior control

Checks for instructions or behavior that redirect the agent, misuse tools, execute unexpected code, cascade across systems, exploit user trust, or continue outside the intended task.

Tool Misuse and Exploitation

SeverityLowConfidenceHighStatusNote

scripts/perform_voice_feature_extraction.py

file_url = ensure_file_url(args.file_url) ... filename, content_type, file_content = download_file(file_url, timeout=args.timeout) ... request_http("POST", API_URL, headers={"Authorization": f"Bearer {api_key}"

For voice-feature extraction, the script downloads a user-supplied http(s) audio URL and forwards the content to the Gitee AI API. This matches the stated feature, but the URL and audio content should be intentionally chosen.

User impactIf given a private or unintended URL, the skill could fetch that audio and submit it to Gitee AI as part of the extraction workflow.

RecommendationOnly provide audio URLs and voice samples you own or are authorized to process, avoid internal/private URLs, and review requests before using voice-cloning or voice-feature features.

Agentic Supply Chain Vulnerabilities

SeverityInfoConfidenceHighStatusNote

metadata

Source: unknown; Homepage: none; No install spec — this is an instruction-only skill.

The artifacts do not identify an upstream source or homepage. The included files are visible and there is no remote installer, so this is a provenance note rather than evidence of malicious behavior.

User impactUsers have less external context for who maintains the skill or where updates originate.

RecommendationInstall only if you trust the registry publisher, and review the bundled scripts before providing credentials or voice samples.

Permission boundary

Checks whether tool use, credentials, dependencies, identity, account access, or inter-agent boundaries are broader than the stated purpose.

Identity and Privilege Abuse

SeverityLowConfidenceHighStatusNote

SKILL.md

requires:\n      bins: [ "python" ]\n      env: [ "GITEEAI_API_KEY" ]\n    primaryEnv: "GITEEAI_API_KEY"

The skill explicitly requires a Gitee AI credential. That is expected for calling the Gitee AI service, but it gives the skill access to the user's API account/quota for generated requests.

User impactAnyone installing it should treat the API key like an account credential and expect requests to be made under their Gitee AI account.

RecommendationUse an appropriately scoped API key if available, prefer environment-variable storage over command-line arguments, and avoid sharing logs or shell history that may contain the key.