ClawHub

Audio2Text

Security checks across malware telemetry and agentic risk

Overview

This skill is a straightforward Tinrec cloud transcription helper, but users should know selected audio is uploaded and the Tinrec API key may be kept in a local file.

Install only if you are comfortable sending chosen audio files to Tinrec for cloud processing. Use a dedicated or rotatable Tinrec API key, prefer environment variables or a protected key file, delete the api-keys file when no longer needed, and avoid highly confidential recordings unless Tinrec's privacy terms fit your needs.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (3)

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The description emphasizes transcription features but does not prominently warn that user audio is uploaded to a third-party cloud service for processing. This is dangerous because audio often contains sensitive personal, business, or regulated information, and users may reasonably assume local processing unless told otherwise.

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The script reads a local audio file and uploads its full contents to remote endpoints for transcription, but it does not present a clear runtime warning or consent prompt that the file will leave the local machine. Because audio often contains sensitive conversations, credentials, or personal data, silent transmission creates a real privacy and data-handling risk even if this is the intended product behavior.

Ssd 3

Medium
Confidence
93% confidence
Finding
The instructions tell users to save their API key into a local file for later CLI use, which increases the chance of credential leakage through accidental inclusion in repositories, backups, logs, or other local disclosure paths. Natural-language guidance that normalizes insecure secret storage is a genuine handling risk even if no code is shown here.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal