中文 EN

扫描报告

扫描新文件

低风险 — 风险评分 15/100
上次扫描:18 小时前 重新扫描
15 /100
voice-clone
多引擎语音合成与声音克隆技能 (Multi-engine TTS and voice cloning)
voice-clone is a legitimate multi-engine TTS tool. One minor shell execution flaw (xdg-open) and an unpinned dependency are present, but no malicious behavior, credential exfiltration, or hidden functionality was found.
技能名称voice-clone
分析耗时38.0s
引擎pi
可以安装
Review the os.system(xdg-open) call for unnecessary shell execution. Pin dependency versions before production use.

安全发现 2 项

严重性 安全发现 位置
低危
Undeclared shell execution for audio playback 代码执行
The script executes xdg-open via os.system() to auto-play synthesized audio. The output file path is user-influenced, creating a shell injection surface. This is not declared in SKILL.md.
os.system(f"xdg-open '{output_file}' >/dev/null 2>&1 &")
→ Use subprocess.run with shell=False or a platform-appropriate library instead. Remove auto-play entirely if not essential.
 voice-clone.py:224
低危
Dependencies not version-pinned 供应链
The install command in SKILL.md installs edge-tts, openai, elevenlabs, coqui-tts, pydantic, aiofiles without version specifiers, risking supply chain attacks from future malicious updates.
pip install edge-tts openai elevenlabs coqui-tts pydantic aiofiles
→ Pin all dependencies to specific versions, e.g. edge-tts==6.1.10, openai>=1.0.0,<2.0.0
 SKILL.md:52
资源类型声明权限推断权限状态证据
文件系统 WRITE WRITE ✓ 一致 voice-clone.py:20 — CACHE_DIR = Path.home() / ".cache" / "voice-clone"
网络访问 NONE READ ✓ 一致 voice-clone.py:65,90,106 — calls to edge-tts, OpenAI API, ElevenLabs API (all le…
环境变量 NONE READ ✓ 一致 voice-clone.py:72,95 — reads OPENAI_API_KEY and ELEVENLABS_API_KEY, both declare…
命令执行 NONE WRITE ✓ 一致 voice-clone.py:224 — os.system(f"xdg-open '{output_file}' >/dev/null 2>&1 &")

目录结构

3 文件 · 11.6 KB · 377 行
Python 1f · 257L Markdown 1f · 115L JSON 1f · 5L
├─ 📋 _meta.json JSON 5L · 74 B
├─ 📝 SKILL.md Markdown 115L · 2.0 KB
└─ 🐍 voice-clone.py Python 257L · 9.5 KB

依赖分析 6 项

包名版本来源已知漏洞备注
edge-tts unpinned pip Not pinned in SKILL.md install command
openai unpinned pip Not pinned in SKILL.md install command
elevenlabs unpinned pip Not pinned in SKILL.md install command
coqui-tts unpinned pip Not pinned in SKILL.md install command
pydantic unpinned pip Not pinned in SKILL.md install command
aiofiles unpinned pip Not pinned in SKILL.md install command

安全亮点

✓ Code is straightforward and readable — no obfuscation, base64, or eval() patterns
✓ Network calls go exclusively to known, legitimate TTS service APIs (Edge, OpenAI, ElevenLabs)
✓ No access to sensitive credential files (.ssh, .aws, .env as files)
✓ No hidden functionality or doc-to-code mismatch beyond the shell execution detail
✓ No credential exfiltration — API keys are used only for intended TTS service calls
✓ No persistence mechanisms (no cron, startup hooks, or backdoor installation)