Security audit
Speaches STT for OpenClaw
Security checks across malware telemetry and agentic risk
Overview
This skill coherently adds a Speaches speech-to-text provider and its sensitive behavior—sending voice audio to the configured transcription endpoint—is disclosed and purpose-aligned.
Before installing, confirm that the Speaches baseUrl points to a trusted local or secure server and that you are comfortable sending voice-call audio there. Protect any SPEACHES_API_KEY value, and use trusted package sources for the ws dependency.
VirusTotal
No VirusTotal findings
Static analysis
No suspicious patterns detected.
