VoxCPM2 — Tokenizer-Free Multilingual TTS

Security checks across malware telemetry and agentic risk

Overview

The skill appears to be a voice/TTS capability, but it documents voice cloning and speaker adaptation without clear consent or anti-impersonation guardrails.

Install only if you will use it with your own voice or voices you are explicitly authorized to reproduce. Do not use it to impersonate people, create deceptive audio, or clone a speaker without documented consent; handle any uploaded voice samples as sensitive personal data.

SkillSpector

By NVIDIA

Vulnerability Patterns

Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 95% confidence
Finding: The skill explicitly documents voice cloning, controllable cloning, and fine-tuning for speaker adaptation without any warning about consent, impersonation, or abuse prevention. In a TTS/voice-cloning skill, omission of safety constraints materially increases the risk of misuse for fraud, social engineering, harassment, or non-consensual voice replication.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal