Back to skill
Skillv1.0.3
ClawScan security
06 Tts Voice · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignApr 10, 2026, 9:22 AM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- This skill is internally consistent: it sends the provided dialogue to a user-configured TTS HTTP API and returns an audio URL; it requires only the expected API parameters and has no hidden behaviors.
- Guidance
- This skill forwards your provided dialogue to the HTTP API you configure via API_BASE using the API_KEY you supply. Before installing or using it: (1) point API_BASE to a trusted TTS provider and verify its privacy/retention policy, (2) use an API key with least privilege and rotate/revoke it if needed, (3) avoid sending highly sensitive content through unknown endpoints, and (4) confirm that returned audio_url points to the expected host and content. The implementation is small and clear, but data exfiltration risk depends entirely on the remote endpoint you configure.
Review Dimensions
- Purpose & Capability
- okName/description (TTS for short drama/dialogue) match the implementation: skill.js posts the dialogue to a TTS endpoint using model, API key, and base URL. No unrelated capabilities or extra privileges are requested.
- Instruction Scope
- noteSKILL.md and code both require API_KEY, API_BASE, and MODEL_NAME and only send the dialogue text to `${API_BASE}/tts`. This is expected, but it means user-provided dialogue is transmitted to whatever host API_BASE points to — the SKILL.md does not identify or vouch for any provider, so the user must ensure the configured endpoint is trusted.
- Install Mechanism
- okInstruction-only with a small nodejs skill.js file; there is no install script, no downloads, and no additional packages pulled in. Low install risk.
- Credentials
- okDeclared environment variables (API_KEY, API_BASE, MODEL_NAME) are directly used by the code and are appropriate for a generic TTS integration. API_KEY is sensitive — its use here is justified by the integration but requires the user to trust the remote service.
- Persistence & Privilege
- okalways:false and no modifications to other skills or system settings. The skill does not request persistent/system-wide privileges.