ClawHub

tencent-tts-podcast

Security checks across malware telemetry and agentic risk

Overview

The skill appears to do what it advertises—convert text to Tencent Cloud TTS audio—but users should notice that it uses Tencent cloud credentials, sends text to Tencent, and has optional cloud upload/dependency install steps.

This skill is coherent for Tencent Cloud TTS generation. Before installing, use scoped Tencent credentials, avoid submitting sensitive text unless cloud processing is acceptable, keep COS upload disabled unless you control the destination bucket, and install dependencies in an isolated environment.

VirusTotal

VirusTotal findings are pending for this skill version.

View on VirusTotal

Risk analysis

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

#
ASI03: Identity and Privilege Abuse
Medium
What this means

If broad Tencent Cloud keys are provided, the skill can use those credentials for TTS generation and potentially incur service usage costs.

Why it was flagged

The tool can use Tencent cloud credentials from the local environment or config to make TTS requests.

Skill content
return (os.environ.get("TENCENT_TTS_SECRET_ID", ""), os.environ.get("TENCENT_TTS_SECRET_KEY", ""))
Recommendation

Use a Tencent CAM key scoped only to the required TTS/COS permissions, avoid using root or broad account keys, and rotate keys if they were exposed.

#
ASI07: Insecure Inter-Agent Communication
Medium
What this means

Any text converted to speech may be processed by Tencent Cloud, so private or sensitive content is shared with that provider.

Why it was flagged

The user-provided text is included in a request to Tencent Cloud's TTS API, which is expected for this skill but means text leaves the local environment.

Skill content
endpoint = "https://tts.tencentcloudapi.com" ... payload = json.dumps({"Text": text, "SessionId": str(uuid.uuid4()), "VoiceType": voice_type})
Recommendation

Do not submit sensitive text unless Tencent Cloud processing is acceptable for your use case and account policy.

#
ASI02: Tool Misuse and Exploitation
Low
What this means

If COS upload is enabled, generated audio may be stored in a cloud bucket rather than remaining local.

Why it was flagged

The skill supports uploading generated audio to Tencent COS when enabled, with documented defaults.

Skill content
`upload_cos` | Whether to upload to COS, true/false (default false, local only) ... `bucket_name` | COS Bucket name (default: ti-aoi)
Recommendation

Leave COS upload disabled unless needed, and if enabling it, explicitly set a bucket, region, and permissions you control.

#
ASI04: Agentic Supply Chain Vulnerabilities
Low
What this means

Installing later dependency versions could change runtime behavior or introduce dependency-level issues.

Why it was flagged

The required packages are purpose-aligned, but they are specified with lower bounds instead of exact pinned versions.

Skill content
tencentcloud-sdk-python>=3.0.0
cos-python-sdk-v5>=1.8.0
requests>=2.20.0
Recommendation

Install in an isolated environment and consider pinning reviewed dependency versions before production use.