Security Audit

minimax-tts

github.com/openclaw/skills

AI SkillCommit 5acc56773e07

TRUSTED

Scanned 2 months ago

Critical

Immediate action required

High

Priority fixes suggested

Medium

Best practices review

Low

Acknowledged / Tracked

Trust Assessment

minimax-tts received a trust score of 88/100, placing it in the Mostly Trusted category. This skill has passed most security checks with only minor considerations noted.

SkillShield's automated analysis identified 2 findings: 0 critical, 0 high, 2 medium, and 0 low severity. Key findings include Missing required field: name, Untrusted skill description can be used for prompt injection.

The analysis covered 4 layers: Manifest Analysis, Static Code Analysis, Dependency Graph, LLM Behavioral Safety. All layers scored 70 or above, reflecting consistent security practices.

Last analyzed on February 12, 2026 (commit 5acc5677). SkillShield performs automated 4-layer security analysis on AI skills and MCP servers.

Layer Breakdown

Manifest Analysis

100%

Static Code Analysis

93%

Dependency Graph

100%

LLM Behavioral Safety

93%

Behavioral Risk Signals

Dynamic Code

1 finding

Security Findings2

Severity	Finding	Layer	Location
MEDIUM	Missing required field: name The 'name' field is required for claude_code skills but is missing from frontmatter. Add a 'name' field to the SKILL.md frontmatter.	Static	skills/doobidoo/minimax-tts/SKILL.md:1
MEDIUM	Untrusted skill description can be used for prompt injection The skill's description is sourced directly from untrusted content within the `SKILL.md` body. This description is likely used by the host LLM to understand the skill's purpose and trigger conditions. A malicious actor could craft a description containing instructions designed to manipulate the LLM's behavior, even though the current description is benign. The parse warning 'Frontmatter opening '---' found but closing '---' is missing' further suggests that this content might be treated as raw text rather than strictly parsed metadata, increasing the risk if directly concatenated into an LLM prompt. Implement robust sanitization and validation for skill descriptions sourced from untrusted content. Ensure that descriptions are processed through an LLM-aware input validation layer that filters out or neutralizes potential prompt injection attempts before being presented to or used by the host LLM. Consider enforcing strict schema validation for skill metadata.	LLM	SKILL.md:3

Scan History

Embed Code

[![SkillShield](https://skillshield.io/api/v1/badge/023f6cc7928c14c4.svg)](https://skillshield.io/report/023f6cc7928c14c4)