Scan Report
5 /100
llc-phone
Low-latency inbound and outbound AI phone calls via OpenAI Realtime API and Twilio
Legitimate AI phone agent skill with no malicious indicators — all functionality is clearly documented and matches the implementation.
Safe to install
No action needed. This is a production-ready voice agent skill.
Findings 1 items
| Severity | Finding | Location |
|---|---|---|
| Low | Unpinned dependency versions | package.json:21 |
| Resource | Declared | Inferred | Status | Evidence |
|---|---|---|---|---|
| Filesystem | NONE | READ | ✓ Aligned | readFileSync(twimlPath) only for static TwiML template |
| Network | READ/WRITE | READ | ✓ Aligned | Twilio API, OpenAI WebSocket, ClickSend SMS, CalDAV calendar — all documented an… |
| Shell | NONE | NONE | — | No subprocess or child_process usage found |
| Environment | NONE | READ | ✓ Aligned | Only reads env vars for config (OPENAI_API_KEY, TWILIO_*, CLICKSEND_*, CALDAV_*)… |
| Skill Invoke | NONE | NONE | — | No skill self-invocation |
| Clipboard | NONE | NONE | — | No clipboard access |
| Browser | NONE | NONE | — | No browser automation |
| Database | NONE | READ | ✓ Aligned | CalDAV calendar via HTTP REPORT/PUT — documented as appointment booking feature |
5 findings
Medium External URL 外部 URL
https://platform.openai.com/docs/changelog docs/08-known-issues.md:130 Medium External URL 外部 URL
https://community.openai.com docs/08-known-issues.md:131 Medium External URL 外部 URL
https://your-caldav-server.example.com src/functionHandlers.ts:7 Medium External URL 外部 URL
https://rest.clicksend.com/v3/sms/send src/functionHandlers.ts:397 Medium External URL 外部 URL
https://api.twilio.com/2010-04-01/Accounts/$ src/functionHandlers.ts:424 File Tree
19 files · 124.4 KB · 3676 lines TypeScript 5f · 1968L
Markdown 11f · 1643L
JSON 2f · 57L
XML 1f · 8L
├─
▾
docs
│ ├─
01-overview.md
Markdown
│ ├─
02-session-config.md
Markdown
│ ├─
03-prewarm-outbound.md
Markdown
│ ├─
04-inbound-modes.md
Markdown
│ ├─
05-async-tools.md
Markdown
│ ├─
06-latency-tuning.md
Markdown
│ ├─
07-twilio-integration.md
Markdown
│ ├─
08-known-issues.md
Markdown
│ └─
09-openclaw-config.md
Markdown
├─
▾
src
│ ├─
functionHandlers.ts
TypeScript
│ ├─
server.ts
TypeScript
│ ├─
sessionManager.ts
TypeScript
│ ├─
twiml.xml
XML
│ ├─
types.ts
TypeScript
│ └─
webhook.ts
TypeScript
├─
package.json
JSON
├─
README.md
Markdown
├─
SKILL.md
Markdown
└─
tsconfig.json
JSON
Dependencies 5 items
| Package | Version | Source | Known Vulns | Notes |
|---|---|---|---|---|
express | ^4.21.2 | npm | No | Unpinned minor version |
ws | ^8.18.0 | npm | No | Unpinned minor version |
dotenv | ^16.4.5 | npm | No | Unpinned minor version |
cors | ^2.8.5 | npm | No | Unpinned minor version |
typescript | ^5.5.4 | npm | No | Dev dependency, unpinned |
Security Positives
✓ No subprocess/child_process usage — pure Node.js application
✓ No eval(), no base64 decode-into-shell, no dynamic code execution
✓ No credential harvesting — only reads env vars for legitimate service authentication
✓ No sensitive local path access (~/.ssh, ~/.aws, .env files)
✓ No curl|bash or wget|sh remote script execution
✓ SKILL.md documentation accurately describes all implemented functionality
✓ All external API calls (Twilio, OpenAI, ClickSend, CalDAV) are declared and necessary for the voice agent feature
✓ WebSocket/Webhook exfiltration only occurs to user-configured TRANSCRIPT_WEBHOOK_URL (opt-in, disabled by default)
✓ No hidden functionality in HTML comments or disguised code
✓ TypeScript source is clean and readable — no obfuscation
✓ Uses standard, well-audited dependencies (express, ws, cors)