ClawHub

Quick TTS

Security checks across malware telemetry and agentic risk

Overview

This TTS skill appears purpose-aligned, but it should be reviewed because it sends arbitrary text to an external API and shows an unsafe shell template for inserting that text.

Review before installing. Use a scoped, revocable SenseAudio API key, do not synthesize secrets or regulated/private text unless SenseAudio handling is acceptable, and update the skill to safely build JSON instead of inserting user text directly into a shell-quoted curl command.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (4)

Vague Triggers

Medium
Confidence
88% confidence
Finding
The skill description is broad enough to trigger on many generic requests to 'read' or 'generate audio' without clearly warning that user text will be sent to a third-party API and written to disk. This can cause unintended activation on sensitive content, increasing the chance of exfiltrating private text to an external service.

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The skill omits a user-facing warning that provided text is transmitted to an external TTS provider and saved as an mp3 file. Without disclosure or consent, users may unknowingly send sensitive or regulated data off-platform and leave residual local files behind.

External Transmission

Medium
Category
Data Exfiltration
Content
## API Call

```bash
curl -s -X POST https://api.senseaudio.cn/v1/t2a_v2 \
  -H "Authorization: Bearer $SENSEAUDIO_API_KEY" \
  -H "Content-Type: application/json" \
  -d '{
Confidence
96% confidence
Finding
curl -s -X POST https://api.senseaudio.cn/v1/t2a_v2 \ -H "Authorization: Bearer $SENSEAUDIO_API_KEY" \ -H "Content-Type: application/json" \ -d

External Transmission

Medium
Category
Data Exfiltration
Content
## API Call

```bash
curl -s -X POST https://api.senseaudio.cn/v1/t2a_v2 \
  -H "Authorization: Bearer $SENSEAUDIO_API_KEY" \
  -H "Content-Type: application/json" \
  -d '{
Confidence
96% confidence
Finding
https://api.senseaudio.cn/

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal