character-voice-broadcast 安全扫描报告 — 低风险 | ClawSafe

10 /100

character-voice-broadcast

Convert plain text into TTS-ready, persona-driven spoken content using SenseAudio API

A straightforward TTS wrapper skill with no malicious behavior; all declared capabilities match implementation and no hidden functionality was found.

技能名称character-voice-broadcast

分析耗时30.4s

引擎pi

✓

可以安装

No action required. The skill is safe to use. Optionally pin the requests/urllib dependencies to mitigate supply-chain risks in future.

资源类型	声明权限	推断权限	状态	证据
网络访问	`READ`	`READ`	✓ 一致	scripts/senseaudio_tts.py:52 urllib.request.urlopen(build_request(...))
文件系统	`WRITE`	`WRITE`	✓ 一致	scripts/senseaudio_tts.py:75 save_bytes(args.output, audio_bytes)
环境变量	`READ`	`READ`	✓ 一致	scripts/senseaudio_tts.py:35 os.environ.get('SENSEAUDIO_API_KEY')
命令执行	`NONE`	`NONE`	—	No subprocess or shell execution found
剪贴板	`NONE`	`NONE`	—	No clipboard access
浏览器	`NONE`	`NONE`	—	No browser automation
数据库	`NONE`	`NONE`	—	No database access
技能调用	`NONE`	`NONE`	—	No recursive skill invocation

1 项发现

🔗

中危外部 URL 外部 URL

https://api.senseaudio.cn/v1/t2a_v2

SKILL.md:86

目录结构

5 文件 · 13.3 KB · 464 行

Markdown 3f · 318L Python 1f · 142L YAML 1f · 4L

├─ ▾ 📁 agents

│ └─ 📋 openai.yaml YAML 4L · 254 B

├─ ▾ 📁 references

│ ├─ 📝 senseaudio-api.md Markdown 50L · 1.0 KB

│ └─ 📝 voice-broadcast-templates.md Markdown 123L · 1.9 KB

├─ ▾ 📁 scripts

│ └─ 🐍 senseaudio_tts.py Python 142L · 4.5 KB

└─ 📝 SKILL.md Markdown 145L · 5.6 KB

包名	版本	来源	已知漏洞	备注
`urllib`	`stdlib`	Python 3 standard library	否	Used for HTTP POST; no external dependency
`argparse`	`stdlib`	Python 3 standard library	否	CLI argument parsing only

✓ SKILL.md and scripts/senseaudio_tts.py are fully consistent — every declared capability is present in code

✓ No subprocess, shell execution, or system command calls found

✓ No credential exfiltration — API key is used only for the declared API call

✓ No base64-encoded or obfuscated payloads

✓ No sensitive path access (~/.ssh, ~/.aws, .env beyond declared vars)

✓ Audio response parsing is defensive (hex, base64, URL download) but entirely within documented scope

✓ No persistence mechanisms (cron, startup scripts, registry hooks)

✓ No hidden HTML comments or steganographic instructions

✓ No supply-chain issues detected — standard library only (argparse, base64, json, os, sys, urllib)