Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
feishu-asr
v1.0.0使用本地Whisper模型识别飞书语音消息。离线免费,不需要注册,不需要联网。
⭐ 0· 65·0 current·0 all-time
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Suspicious
medium confidencePurpose & Capability
The name/description promise '本地...离线免费,不需要联网', but the code uses transformers.from_pretrained which downloads models and explicitly sets HF_ENDPOINT to https://hf-mirror.com. The README asks for FEISHU_APP_ID/SECRET and cloud ASR keys (Aliyun/Tencent) even though the provided script does not use those credentials. Requiring or suggesting remote model downloads (and unrelated cloud credentials) is inconsistent with the 'offline' claim.
Instruction Scope
SKILL.md and scripts instruct the agent to download models via Hugging Face (with HF_ENDPOINT set to a specific mirror). The SKILL.md mentions fetching file_key from Feishu and downloading audio, but the shipped script is a standalone CLI that takes a local file path and does not implement Feishu API calls or consume FEISHU_* env vars. The script also unconditionally overwrites HF_ENDPOINT in os.environ, forcing use of a particular external mirror — an unexpected outbound network action compared to the 'offline' description.
Install Mechanism
There is no explicit install spec (instruction-only + one script). That minimizes installer risk, but the runtime will trigger large model downloads via transformers.from_pretrained. The mirror URL is not a well-known official release host; model artifacts will be fetched at runtime. Also, the script imports resampy conditionally but pip install instructions in SKILL.md do not list resampy.
Credentials
Declared requirements are none, but README suggests FEISHU_APP_ID/FEISHU_APP_SECRET and cloud ASR keys. The code does not use those env vars; instead it hardcodes HF_ENDPOINT to a third‑party mirror. Asking users to configure unrelated credentials (Feishu or Aliyun) in documentation while the code ignores them is disproportionate and confusing — could lead users to supply sensitive credentials unnecessarily.
Persistence & Privilege
The skill is not always-enabled and does not request persistent privileges or modify other skills or system-wide configs. It only writes a transient temp WAV file and deletes it. Autonomous invocation is allowed (platform default) but not combined here with other high-risk features.
What to consider before installing
This skill's description says 'offline', but the code will download Whisper models at first run and forces HF_ENDPOINT to https://hf-mirror.com — so network access and a third‑party mirror are involved. The README also asks you to set Feishu and cloud ASR credentials even though the included script never uses them. Before installing or running: (1) do not provide platform/cloud credentials (FEISHU_*, ALIYUN_*, etc.) unless you confirm the skill actually needs them; (2) treat the mirror (https://hf-mirror.com) as an external endpoint — ask the author for provenance or replace it with an official source you trust; (3) run initial tests in an isolated environment with network monitoring to see what is downloaded; (4) note that resampy is used but not listed in pip instructions — add missing dependency if you run it locally; (5) ask the maintainer to clarify the offline claim or to provide an explicitly bundled, offline model if truly intended. If you cannot verify the mirror’s trustworthiness or the author’s intent, avoid supplying any sensitive credentials.Like a lobster shell, security has layers — review code before you run it.
latestvk97f086q2zt3mj3g6qt0j8bnds83d250
License
MIT-0
Free to use, modify, and redistribute. No attribution required.