Elevenlabs Pro

Security checks across malware telemetry and agentic risk

Overview

This is a straightforward ElevenLabs text-to-speech skill with normal API-key, network, and output-file risks that are disclosed and aligned with its purpose.

Install only if you are comfortable sending your input text to ElevenLabs and using an ElevenLabs API key that may consume account credits. Prefer ELEVENLABS_API_KEY over --api-key, and review output paths before running so generated audio does not overwrite an important file.

SkillSpector

By NVIDIA

Vulnerability Patterns

MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (2)

Lp3

Medium

Category: MCP Least Privilege
Confidence: 89% confidence
Finding: The skill documentation describes use of environment variables and outbound network access to the ElevenLabs API, but the skill does not declare corresponding permissions. Undeclared capabilities reduce transparency and can bypass user expectations or policy checks, which is a legitimate security issue even if the capability use is expected for a TTS integration.

Missing User Warnings

Medium

Confidence: 96% confidence
Finding: The documentation explicitly recommends passing the API key via `--api-key`, which can expose secrets through shell history, process listings, audit logs, or terminal recording tools. Because this skill uses a live third-party API key, accidental disclosure could allow unauthorized API usage, billing abuse, and access to account-related information such as remaining credits.

VirusTotal

63/63 vendors flagged this skill as clean.

View on VirusTotal