Aliyun TTS
ReviewAudited by ClawScan on May 10, 2026.
Overview
The skill appears to perform Aliyun text-to-speech, but it handles Alibaba Cloud credentials and requests a token over unencrypted HTTP, so it should be reviewed before use.
Install only if you are comfortable giving the skill Aliyun TTS credentials and sending requested text to Alibaba Cloud. Prefer restricted, least-privilege Aliyun credentials, verify the command wrapper before running it, and avoid using this version on untrusted networks unless the token request is changed to HTTPS.
Findings (3)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
Someone able to observe network traffic could potentially see account identifiers, signed token-request data, or the returned temporary TTS token and use Aliyun resources unexpectedly.
The script uses Alibaba Cloud access credentials to sign a token request, then sends the signed request and receives the token over unencrypted HTTP.
ALIYUN_ACCESS_KEY_SECRET = os.getenv("ALIYUN_ACCESS_KEY_SECRET") ... full_url = f"http://nls-meta.{REGION}.aliyuncs.com/?Signature={signature}&{query_string}" ... conn = http.client.HTTPConnection(host)Use HTTPS for the token endpoint if supported, use a least-privilege Aliyun RAM user limited to TTS, and rotate any keys used with the current HTTP implementation.
If invoked with an unsafe output path, the skill could overwrite a writable local file with audio data.
The tool writes generated audio to a user-specified local path. This is expected for a TTS tool, but the chosen path controls what file is overwritten.
parser.add_argument("-o", "--output", default="/tmp/tts_output.mp3", help="输出文件路径") ... with open(output_file, "wb") as f:Use temporary or dedicated output paths such as /tmp/voice-reply.mp3 and avoid pointing the output option at important files.
The skill may not run as documented, or users may need to verify how the executable wrapper is created.
The documentation references a bin wrapper, but the provided manifest only contains SKILL.md and aliyun_tts.py and there is no install spec. This is a packaging clarity issue rather than direct malicious behavior.
{baseDir}/bin/aliyun-tts "Hello, this is Aliyun TTS"Confirm the installed files before use and ensure any wrapper command points only to the reviewed aliyun_tts.py script.