ClawHub

Lx Whisper Transcribe

Security checks across malware telemetry and agentic risk

Overview

This is a coherent local speech-to-text helper, but users should notice that its setup changes the shell environment and may download model files.

Before installing, review the wrapper commands and only proceed if you are comfortable creating ~/bin/whisper, changing PATH for future shell sessions, and downloading models from hf-mirror.com or Hugging Face. Consider using a temporary PATH change first, verify which command runs with command -v whisper, and remove the ~/.bashrc line if you no longer want the wrapper active.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Rogue AgentSelf-Modification, Session Persistence
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • YARA SignaturesMalware Match, Webshell Match, Cryptominer Match
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Findings (5)

Missing User Warnings

Medium
Confidence
72% confidence
Finding
The guide instructs users to append to ~/.bashrc, creating a persistent environment change without clearly warning that it affects future shell sessions. While not inherently malicious, persistence-related modifications are security-relevant because they alter command resolution and can cause users to execute a user-controlled wrapper unintentionally in later sessions.

Vague Triggers

Medium
Confidence
95% confidence
Finding
The phrase '或类似关键词' makes activation criteria ambiguous and can cause the skill to run on unintended user inputs. Because this skill has exec and filesystem permissions and may download models on first use, accidental invocation can trigger unnecessary network access, file writes, and processing without clear user intent.

Missing User Warnings

Medium
Confidence
90% confidence
Finding
The skill presents itself as 'completely local' but the usage notes reveal that first use may download model files, which is a meaningful security and privacy-relevant behavior. Users are not clearly warned up front about network access, external sources, or integrity expectations, increasing the risk of unexpected downloads in restricted or sensitive environments.

Session Persistence

Medium
Category
Rogue Agent
Content
#### 2. 安装语音转文字包装器
```bash
# 创建目录
mkdir -p ~/bin

# 创建whisper包装器
cat > ~/bin/whisper << 'EOF'
Confidence
79% confidence
Finding
mkdir -p ~/bin # 创建whisper包装器 cat > ~/bin/whisper << 'EOF' #!/usr/bin/env bash # whisper - wrapper for faster_whisper audio transcription if [[ $# -lt 1 ]]; then echo "Usage: whisper <audio_file

YARA rule 'backdoor_persistence': Backdoor persistence with malicious payloads (shell commands, SSH key injection, hidden root users) [malware]

High
Category
YARA Match
Content
### 📖 使用方法

#### 基本转录命令
```bash
# 转录语音文件(默认使用tiny模型和中文)
whisper /path/to/your/audio.ogg
Confidence
84% confidence
Finding
echo 'export PATH="$HOME/bin:$PATH"' >> ~/.bashrc

VirusTotal

58/58 vendors flagged this skill as clean.

View on VirusTotal