Trust Assessment
voice-ai-tts received a trust score of 86/100, placing it in the Mostly Trusted category. This skill has passed most security checks with only minor considerations noted.
SkillShield's automated analysis identified 1 finding: 0 critical, 1 high, 0 medium, and 0 low severity. Key findings include Arbitrary File Write via Unsanitized Output Path.
The analysis covered 4 layers: Manifest Analysis, Static Code Analysis, Dependency Graph, LLM Behavioral Safety. All layers scored 70 or above, reflecting consistent security practices.
Last analyzed on February 13, 2026 (commit 13146e6a). SkillShield performs automated 4-layer security analysis on AI skills and MCP servers.
Layer Breakdown
Behavioral Risk Signals
Security Findings1
| Severity | Finding | Layer | Location | |
|---|---|---|---|---|
| HIGH | Arbitrary File Write via Unsanitized Output Path The `scripts/tts.js` script accepts an `--output` command-line argument, which is directly used as a file path for writing audio data by the `voice-ai-tts-sdk.js` (via `fs.writeFileSync` or `fs.createWriteStream`). If an AI agent passes unsanitized user input directly to this argument, a malicious user could specify a path like `../../../../etc/passwd` to write to arbitrary locations on the file system. This could lead to data corruption, denial of service, or potentially remote code execution if critical system files or executables are overwritten. Sanitize the `opts.output` argument to ensure it is a safe filename and path. Restrict output files to a designated, non-sensitive directory and use `path.basename()` to prevent directory traversal. For example, `path.join('/safe/output/directory', path.basename(opts.output))`. | LLM | scripts/tts.js:30 |
Scan History
Embed Code
[](https://skillshield.io/report/241f255b4229e9d3)
Powered by SkillShield