ClawHub
Back to skill

Security audit

SenseAudio-TTS

Security checks across malware telemetry and agentic risk

Overview

This SenseAudio TTS skill is instruction-only and only asks for the disclosed API key to make expected SenseAudio text-to-speech calls.

Before installing, make sure you are comfortable giving the agent a SenseAudio API key and sending synthesis text to SenseAudio. Use a dedicated or scoped key if available, avoid putting the key in prompts or logs, and review the provider's privacy and retention terms before synthesizing sensitive text.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

VirusTotal

55/55 vendors flagged this skill as clean.

View on VirusTotal