Back to skill

Security audit

Avatar Content Engine UGC - OpenClaw

Security checks across malware telemetry and agentic risk

Overview

This is a non-executable AI avatar content guide with disclosed media-generation steps, but users should only use voices and likenesses they own or have permission to use.

Install only if you want an agent to help produce AI-avatar social videos. Before using the voice or likeness workflow, confirm you have rights or clear consent for any real person's voice, face, brand, or copyrighted material, and review paid-generation actions before committing credits.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (2)

Vague Triggers

High
Confidence
95% confidence
Finding
The skill explicitly says to trigger even when a request only loosely mentions an avatar, TikTok/Reel, portrait, or content pipeline, which creates overbroad activation conditions. This can cause the agent to invoke the skill in contexts where the user did not intend it, increasing the chance of unintended content generation workflows, including more sensitive functions described later such as voice cloning and media generation.

Missing User Warnings

Medium
Confidence
92% confidence
Finding
The skill instructs the operator to clone an avatar's voice once and reuse it, but it provides no warning, consent requirement, or abuse constraints around voice cloning. Because synthetic voice impersonation is highly sensitive, the lack of disclosure and safeguards materially raises the risk of unauthorized impersonation, deception, or policy-violating media generation.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.