sherpa-onnx-tts
Enables local text-to-speech functionality using the sherpa-onnx CLI, allowing offline audio generation from text.
Install this skill
or
80/100
Security score
The sherpa-onnx-tts skill was audited on May 12, 2026 and we found 4 security issues across 2 threat categories. Review the findings below before installing.
Categories Tested
Security Issues
medium line 71
Template literal with variable interpolation in command context
SourceSKILL.md
| 71 | ```bash |
medium line 66
Access to hidden dotfiles in home directory
SourceSKILL.md
| 66 | 1. Download the runtime for your OS (extracts into `$OPENCLAW_STATE_DIR/tools/sherpa-onnx-tts/runtime`, default `~/.openclaw/tools/sherpa-onnx-tts/runtime`) |
medium line 67
Access to hidden dotfiles in home directory
SourceSKILL.md
| 67 | 2. Download a voice model (extracts into `$OPENCLAW_STATE_DIR/tools/sherpa-onnx-tts/models`, default `~/.openclaw/tools/sherpa-onnx-tts/models`) |
medium line 75
Access to hidden dotfiles in home directory
SourceSKILL.md
| 75 | Then write those resolved paths into the active OpenClaw config file (`$OPENCLAW_CONFIG_PATH`, default `~/.openclaw/openclaw.json`): |
Scanned on May 12, 2026
View Security Dashboard