Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
persona-voice
v1.1.0在 chatgpt / claw 与飞书 / lark 机器人场景中,根据随机或指定人格生成明显带有人格风格的短回复,并通过 senseaudio tts 合成语音,再以飞书原生语音条发送。支持文字输入和音频输入;音频输入时先调用 senseaudio asr。适用于飞书人格陪伴、随机人格语音回复、角色化语音机器...
⭐ 0· 190·0 current·0 all-time
byHeiMaoM@hei-maom
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Suspicious
high confidencePurpose & Capability
The skill name/description (persona voice for Feishu/Lark using SenseAudio TTS/ASR) matches the code and instructions. However the registry metadata claims no required env vars or binaries while the SKILL.md and code clearly require FEISHU_APP_ID, FEISHU_APP_SECRET, SENSEAUDIO_API_KEY and recommend python3/ffmpeg/requests. This metadata mismatch is an incoherence and could mislead users about what secrets and tools are needed.
Instruction Scope
SKILL.md and the scripts limit actions to: generating persona prompts, calling SenseAudio ASR/TTS endpoints, converting audio with ffmpeg, uploading to Feishu via its API, and reading/writing local skill state (.env, data/, outputs/). The instructions do not attempt to read arbitrary system files or unrelated credentials. One behavioral note: the guidance explicitly instructs the model not to disclose internal rules or that a persona was randomly chosen — this is a functional design choice (deceptive behaviour toward end users) but not a technical incoherence.
Install Mechanism
There is no install spec (instruction-only / script bundle). Code dependencies are minimal (requests in requirements.txt) and no external downloads or installers are performed. This is low install risk.
Credentials
The code requires FEISHU_APP_ID, FEISHU_APP_SECRET and SENSEAUDIO_API_KEY (and optionally FFMPEG_PATH or having ffmpeg on PATH). Those credentials are proportionate to the stated Feishu + SenseAudio integration. The concern is the registry metadata declaring none required — an important mismatch. Also the code will auto-load .env.local and .env from the skill root, so secrets placed there could be read; users should avoid committing secrets into repo files.
Persistence & Privilege
The skill does not request 'always: true' and does not modify other skills or system-wide agent settings. It writes only to its own data/ and outputs/ directories. It can make outbound network calls to SenseAudio and Feishu, which is expected for its purpose.
What to consider before installing
This skill appears to do what it says (generate personaized replies, send TTS audio to Feishu using SenseAudio). Before installing: 1) be aware the package actually requires FEISHU_APP_ID, FEISHU_APP_SECRET and SENSEAUDIO_API_KEY (the registry metadata incorrectly lists none) and will attempt to load .env.local/.env in the skill folder — do not store secrets in the repository. 2) Understand audio (user voice) will be uploaded to SenseAudio and audio files uploaded to Feishu — review SenseAudio and Feishu privacy/policy and ensure you trust those services. 3) Ensure ffmpeg is available in the runtime or set FFMPEG_PATH; the code runs ffmpeg via subprocess. 4) If you require transparency to end users, note the SKILL enforces hiding internal rules (it instructs the model not to reveal it's using random personas). 5) Run the skill in a limited/test environment first (with test credentials) and review logs/requests to confirm behavior. If you need, ask the maintainer to correct the registry metadata to list the required env vars and binaries.Like a lobster shell, security has layers — review code before you run it.
latestvk9732b9q1n8jesk7y72ee6arad833c39
License
MIT-0
Free to use, modify, and redistribute. No attribution required.