ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

Speech To Text

v0.1.5

Transcribe audio to text with Whisper models via inference.sh CLI. Models: Fast Whisper Large V3, Whisper V3 Large. Capabilities: transcription, translation,...

0· 2.6k·32 current·33 all-time
byÖmer Karışman@okaris
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Suspicious
View report →
OpenClawOpenClaw
Suspicious
medium confidence
Purpose & Capability
Name/description align with the instructions: the SKILL.md consistently instructs use of the inference.sh CLI and specific Whisper apps for transcription, translation, timestamps, etc. Nothing requested in the doc is unrelated to transcription.
!
Instruction Scope
The instructions tell the user/agent to run a network installer via `curl -fsSL https://cli.inference.sh | sh` and to run `infsh login` and `infsh app run ... --input '{"audio_url": "https://..."}'`. That means audio will be uploaded/sent to inference.sh apps. The SKILL.md does not declare what credentials are required, how login works, or the privacy/retention policies for uploaded audio. It also encourages installing and running code fetched from the network, which expands the runtime scope beyond local-only transcription.
!
Install Mechanism
Although the registry shows no formal install spec, the instructions explicitly recommend piping a remote script to sh (download-and-run) and say it downloads binaries from dist.inference.sh. Downloading and running a remote installer is higher-risk than an instruction-only skill; while the URLs are consistent (inference.sh / dist.inference.sh) and a checksum file is referenced, the installer pattern (curl | sh) and archive extraction are not enforced by the registry metadata and may write binaries to disk.
Credentials
The skill declares no required environment variables or primary credential, which matches the registry. However, the SKILL.md tells the user to run `infsh login` (implying credentials or an account are needed) and to send audio URLs to remote apps — this implicitly requires account credentials or interactive login and causes data to leave the host. The lack of declared credential requirements and absence of privacy/retention guidance is a gap.
Persistence & Privilege
Registry flags do not request persistent/always-on privileges and the skill is instruction-only. The only persistence risk comes from the installer it recommends (a local binary), but the skill itself does not request always-on or modify other skills' configs.
What to consider before installing
This skill appears to do what it says (use inference.sh to transcribe audio) but exercise caution before following the installer steps. Avoid piping unknown remote scripts directly into sh; if you want to use this skill, manually inspect the installer at https://cli.inference.sh and verify checksums from https://dist.inference.sh/checksums.txt before running. Understand that `infsh app run ... --input {"audio_url": ...}` will send audio to inference.sh's servers—check their privacy, retention, and security policies before uploading sensitive audio. Expect to create or provide an inference.sh account (login/API key) even though no env vars are declared. If you need offline/local-only transcription or stronger privacy guarantees, consider an alternative that runs models locally without uploading data.

Like a lobster shell, security has layers — review code before you run it.

latestvk979c27dp3d69xd9kh7c1sae1981ck6e

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments