chanjing-tts-voice-clone

SUSPICIOUS. The core capability matches the stated TTS voice-cloning purpose and there is no malicious installer or obvious exfiltration proxy, but the skill embeds live-looking API credentials and points to an endpoint hostname that does not match the official docs pattern found. The main risk is improper credential exposure and moderate trust ambiguity around the API endpoint, not confirmed malware.