voice-call
Pass
Audited by Gen Agent Trust Hub on Mar 14, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill consists of documentation (SKILL.md) that defines tool interfaces and configuration keys for the voice-call plugin. The behavior described matches the stated purpose of the skill.
- [CREDENTIALS_UNSAFE]: While the documentation mentions authentication fields such as 'authToken' and 'apiKey' for various providers, it only provides keys for configuration and does not contain any hardcoded secrets or sensitive data.
- [COMMAND_EXECUTION]: The skill references the use of the 'openclaw' CLI tool for making voice calls. This is an expected use of the local agent framework and does not involve arbitrary or malicious command injection.
- [PROMPT_INJECTION]: No evidence of prompt injection or instructions to bypass safety guidelines was found in the metadata or the markdown content.
Audit Metadata