← Back to Skills Marketplace
cortexuvula

Phone Voice Integration

by Roaming · GitHub ↗ · v2.0.0
cross-platform ⚠ suspicious
2764
Downloads
4
Stars
13
Active Installs
1
Versions
Install in OpenClaw
/install phone-voice
Description
Connect ElevenLabs Agents to your OpenClaw via phone with Twilio. Includes caller ID auth, voice PIN security, call screening, memory injection, and cost tracking.
Usage Guidance
This skill's purpose is plausible, but the SKILL.md expects you to provide and expose several sensitive credentials and local data while running a public-facing bridge — and the registry metadata does not declare those requirements. Before installing or running anything: 1) Do not copy unreviewed bridge code from unknown sources — implement or review the FastAPI bridge yourself. 2) Use dedicated, least-privilege API keys (separate accounts or scoped tokens) for Twilio/ElevenLabs/Anthropic and rotate them after testing. 3) Avoid storing long-term secrets in plaintext .env; use a secrets manager if possible and prefer short-lived tokens. 4) Run the bridge in an isolated VM/container with strict network/firewall rules and logging. 5) Be cautious about memory files (MEMORY.md, USER.md, transcripts) — they contain personal data and will be sent to external LLM services; redact or limit sensitive content. 6) Prefer temporary tunnels (ngrok short-lived) or carefully configured Cloudflare tunnels, and restrict incoming origins and auth. 7) Ask the publisher for the bridge source code, an explicit list of required env vars, and instructions for secure deployment; if they cannot provide it, consider this skill suspicious and avoid running it in production. Additional info that would raise confidence to 'high': the actual bridge source code for review, a declared env var list in registry metadata, and documented token scoping/retention policies.
Capability Analysis
Type: OpenClaw Skill Name: phone-voice Version: 2.0.0 The skill is classified as suspicious due to several high-risk capabilities described in `SKILL.md`. The custom bridge server can execute external commands (e.g., `gog CLI` for calendar events), which could lead to arbitrary command execution if exploited. It also explicitly injects content from `MEMORY.md` and `USER.md` into the LLM's system prompt, creating a significant prompt injection surface. Furthermore, an `/call/outbound` endpoint allows making phone calls, which could be abused if the authentication token is compromised. These capabilities, while potentially intended for functionality, introduce substantial security risks without clear malicious intent in the provided documentation.
Capability Assessment
Purpose & Capability
The stated purpose (connect ElevenLabs + Twilio + Anthropic via a bridge) reasonably requires Twilio, ElevenLabs, and Anthropic credentials and a network tunnel. However the registry metadata claims no required environment variables or config paths while the SKILL.md clearly expects many secrets and local files (MEMORY.md, USER.md, .env, contacts.json). That mismatch is notable.
Instruction Scope
SKILL.md instructs the agent/operator to load and inject local sensitive files (MEMORY.md, USER.md, recent transcripts) into prompts, to store voice PINs and other secrets in .env, and to transmit conversation data to external services (ElevenLabs, Anthropic, Twilio). It also suggests optional live data (calendar, weather) via external CLIs/APIs. These actions read and transmit sensitive local data not declared in the skill metadata and could leak private information if misconfigured.
Install Mechanism
This is instruction-only (no install spec or code), which reduces direct install risk. The doc recommends installing cloudflared or using ngrok (standard tooling) via brew/ngrok; that is expected for exposing a local bridge but increases exposure. Because there's no provided code to review, the bridge implementation is unspecified — you must supply or review that code yourself.
Credentials
Although the registry lists no required env vars, the instructions require multiple high-privilege secrets (ElevenLabs API key/xi-api-key, Twilio Account SID/Auth Token, Anthropic API key, a bridge auth token, possibly calendar API tokens). Requesting all of these is reasonable for the feature set, but the skill under-declares them and gives no guidance on least-privilege, token scoping, or secure storage. Storing PINs and tokens in plaintext .env files is explicitly suggested, which is risky.
Persistence & Privilege
The skill does not request 'always' privilege, which is good, but it instructs you to run a permanent Cloudflare tunnel or ngrok exposing a local server to the internet. That materially increases attack surface and persistence of external access to your machine and any files the bridge can read. The bridge will handle credentials and transcripts, so run it in an isolated environment and ensure proper access controls.
How to Use
  1. Make sure OpenClaw is installed (local or Docker)
  2. Run the install command in chat: /install phone-voice
  3. After installation, invoke the skill by name or use /phone-voice
  4. Provide required inputs per the skill's parameter spec and get structured output
Version History
v2.0.0
**Major upgrade with new features and security enhancements.** - Adds caller ID authentication and voice PIN security. - Introduces call screening, configurable whitelist, and rate limiting. - Full memory injection from files and recent transcripts before each call. - Tracks costs per call and logs detailed breakdowns. - Supports permanent (Cloudflare) or temporary (ngrok) tunnels. - Hands-off OpenClaw chat completions—bridge now connects directly to Anthropic Claude.
Metadata
Slug phone-voice
Version 2.0.0
License
All-time Installs 13
Active Installs 13
Total Versions 1
Frequently Asked Questions

What is Phone Voice Integration?

Connect ElevenLabs Agents to your OpenClaw via phone with Twilio. Includes caller ID auth, voice PIN security, call screening, memory injection, and cost tracking. It is an AI Agent Skill for Claude Code / OpenClaw, with 2764 downloads so far.

How do I install Phone Voice Integration?

Run "/install phone-voice" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is Phone Voice Integration free?

Yes, Phone Voice Integration is completely free (open-source). You can download, install and use it at no cost.

Which platforms does Phone Voice Integration support?

Phone Voice Integration is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).

Who created Phone Voice Integration?

It is built and maintained by Roaming (@cortexuvula); the current version is v2.0.0.

More Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463556 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259610 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200551 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191226 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190235 · by oswalpalash

💬 Comments