ClawAudit verdict
qwen3-tts-local-inference
The skill generates speech from text using Qwen3-TTS via direct Python inference locally without any server or REST API, and seems to be used for legitimate purposes such as text-to-speech conversion, voiceovers, voice cloning, and TTS with built-in speakers or custom voice descriptions.
โ Flagged for review โ coarse, uncorroborated signal, not a confirmed exploit. Review the config yourself before installing.
Automated static analysis โ not a human review. ClawAudit flags capabilities, not confirmed intent, and can produce false positives. Disagree with this verdict? Use Dispute below.
Findings (2)
Python os.environ.get โ reads environment variable
scripts/config.py ยท prose ยท downgraded ยท os.environ.get(
Python shutil file operation โ copies/moves/deletes files
scripts/tts.py ยท prose ยท downgraded ยท shutil.move(
Why the tier is capped
Execution sink present in raw bytes (Hard Floor: class B). Final tier capped at Caution โ cannot be lifted by any downgrade, example-payload opt-in, or allowlist.
Permissions & capabilities
No declared permissions โ minimal attack surface.
Is this flag fair?
Thanks โ recorded.