by 安全扫描
OpenClaw
安全
medium confidenceNULL
评估建议
This skill is an instruction-only integration that uses the third-party Membrane CLI to manage Azure Speech Service on your behalf. Before installing or using it: 1) Confirm you trust the @membranehq/cli npm package (review its npm page, source repo, and permissions), because it will hold and refresh your service credentials. 2) Be aware the SKILL.md expects Node/npm, network access, and a Membrane account even though the registry metadata didn't list these—install and run commands manually if y...详细分析 ▾
✓ 用途与能力
The name/description (Azure Speech Service integration) matches the instructions (using Membrane CLI to call Azure Speech APIs and run related actions). The skill does not request unrelated permissions or credentials. Minor mismatch: registry metadata lists no required binaries or env vars, but SKILL.md explicitly requires the Membrane CLI, npm, network access, and a Membrane account.
✓ 指令范围
SKILL.md confines runtime actions to installing/using the Membrane CLI, logging in (browser or headless flow), creating connections, listing/running actions, and proxying requests to Azure Speech Service. There are no instructions to read unrelated local files, exfiltrate data to unexpected endpoints, or access system paths beyond standard CLI usage. The proxy feature allows arbitrary API calls to Azure (expected for an integration), so the agent could send any Azure Speech API request via Membrane if asked.
ℹ 安装机制
No platform install spec is embedded in the skill (instruction-only). SKILL.md instructs installing @membranehq/cli via npm (-g), which is a typical but non-zero-risk operation because it downloads and runs third-party code from the npm registry. This is proportionate to the described integration but is a trust decision: the Membrane CLI will be able to manage/authenticate to services on the user's behalf.
ℹ 凭证需求
The skill declares no required env vars, and SKILL.md relies on Membrane to handle authentication, so it does not directly ask for Azure credentials. This is coherent, but it means the Membrane CLI will hold tokens/credentials; users should consider whether they trust that third party with those credentials. No unrelated secrets are requested.
✓ 持久化与权限
always:false and autonomous model invocation is allowed by default (normal). The skill does not request permanent platform-wide privileges. The only persistent change implied is Membrane CLI authentication state (its own config/token storage), which is expected for a CLI-based integration.
安全有层次,运行前请审查代码。
运行时依赖
无特殊依赖
版本
latestv1.0.22026/3/27
NULL
● 可疑
安装命令
点击复制官方npx clawhub@latest install azure-speech-service
镜像加速npx clawhub@latest install azure-speech-service --registry https://cn.longxiaskill.com