ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

Audio Gen 1.0.0

v1.0.0

Generate audiobooks, podcasts, or educational audio content on demand. User provides an idea or topic, Claude AI writes a script, and ElevenLabs converts it...

0· 76·0 current·0 all-time
by@matttgx
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Suspicious
View report →
OpenClawOpenClaw
Suspicious
medium confidence
Purpose & Capability
Requested environment variables (ANTHROPIC_API_KEY and ELEVENLABS_API_KEY) align with the described workflow (generate script via Anthropic/Claude and convert to audio with ElevenLabs). However, the skill does not declare any required binaries yet the SKILL.md instructs running 'uv', and it depends on another skill ('sag') by referencing /home/clawdbot/.../skills/sag/scripts/tts.py. That external dependency is plausible but not self-contained and is not declared as a required binary or install step.
!
Instruction Scope
The SKILL.md directs the agent to execute an absolute path script outside this skill's package (/home/clawdbot/.../skills/sag/scripts/tts.py) via 'uv run'. Executing external, unreviewed scripts and writing to /tmp increases the blast radius and goes beyond purely generating text. The instructions assume the presence and trustworthiness of system-level tooling and files not provided by this skill.
!
Install Mechanism
There is no install spec (instruction-only), which is low-risk by itself — but because runtime explicitly invokes an external script and an undeclared binary, the lack of an install or bundled code means the agent will execute code that was not included in the skill bundle or scanned. That is a notable risk.
Credentials
The two required env vars are proportional and relevant: ANTHROPIC_API_KEY (script generation) and ELEVENLABS_API_KEY (TTS). The skill does not request additional unrelated credentials or file paths in its manifest.
Persistence & Privilege
always is false and the skill does not request persistent installation or modify other skills' configs. However, it instructs executing another skill's script, which increases privilege by relying on code outside its own package. This is not an outright policy violation but increases risk if that external script is malicious or changed.
What to consider before installing
This skill's declared API keys match its stated purpose, but the runtime instructions tell the agent to run an external script (uv run /home/clawdbot/.../sag/scripts/tts.py) that is not included in the skill bundle or scanned. Before installing or allowing autonomous use: 1) Verify the existence and contents of the referenced tts.py and the 'sag' skill — review that code for unexpected network calls, credential use, or data exfiltration. 2) Confirm the 'uv' binary is present and trusted on your system. 3) Prefer using a least-privilege ElevenLabs API key (scoped or rate-limited) and avoid sharing high-privilege keys. 4) If you cannot inspect the external script, run the skill only in an isolated/sandboxed environment. 5) If you expect a fully self-contained skill, ask the publisher why the TTS implementation lives outside this skill and request the implementation be bundled or clearly documented.

Like a lobster shell, security has layers — review code before you run it.

latestvk9770py2kjsqdh5drcj720j1h983anad

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Runtime requirements

🎙️ Clawdis
EnvANTHROPIC_API_KEY, ELEVENLABS_API_KEY
Primary envANTHROPIC_API_KEY

Comments