← Back to Skills Marketplace
366
Downloads
0
Stars
1
Active Installs
1
Versions
Install in OpenClaw
/install cloudflare-whisper-worker
Description
Transcribe audio using a deployed Cloudflare Worker Whisper endpoint. Use when converting voice/audio files (wav, mp3, m4a, ogg, webm) to text through the cu...
README (SKILL.md)
Cloudflare Whisper Worker
Use this skill to transcribe audio through the deployed Whisper Worker API.
Endpoint
- Base URL:
https://lotfi-whisper-worker.medtouradmin.workers.dev - Route:
POST /transcribe - Auth:
Authorization: Bearer \x3CAPI_TOKEN> - Body: raw audio bytes (
--data-binary @file)
Required environment variable
Set token once per shell:
export WHISPER_WORKER_TOKEN="\x3Cyour_token>"
Transcribe a file (JSON response)
curl -sS -X POST "https://lotfi-whisper-worker.medtouradmin.workers.dev/transcribe" \
-H "content-type: audio/wav" \
-H "authorization: Bearer $WHISPER_WORKER_TOKEN" \
--data-binary "@audio.wav"
Transcribe and return only text
curl -sS -X POST "https://lotfi-whisper-worker.medtouradmin.workers.dev/transcribe" \
-H "content-type: audio/wav" \
-H "authorization: Bearer $WHISPER_WORKER_TOKEN" \
--data-binary "@audio.wav" \
| jq -r '.result.text // .text // .result.response // empty'
Content-Type guide
- WAV:
audio/wav - MP3:
audio/mpeg - M4A:
audio/mp4 - OGG/OPUS:
audio/ogg - WEBM:
audio/webm
Common errors
401 Unauthorized: missing/invalid bearer token400 Empty audio body: file path wrong or empty file400 Send raw audio...: invalid content-type header500: worker/runtime/model error; retry and inspect full JSON
Usage Guidance
This skill will upload whatever audio you point it at to the specific worker URL (https://lotfi-whisper-worker.medtouradmin.workers.dev) using a Bearer token. Before installing or using it: 1) Verify and trust the owner/operator of that workers.dev host — do not send sensitive or regulated audio to an unknown third party. 2) Ask the publisher to update metadata to declare WHISPER_WORKER_TOKEN and the required binaries (curl, jq) so you can evaluate requirements upfront. 3) Use a dedicated, scoped token (not a shared account credential), and rotate/delete it after use. 4) If privacy is critical, consider self‑hosting your own worker or using a trusted transcription provider. 5) Ensure curl and jq are available on the machine where you run the script.
Capability Analysis
Type: OpenClaw Skill
Name: cloudflare-whisper-worker
Version: 1.0.0
The skill is designed to send local audio files to an external third-party Cloudflare Worker endpoint (lotfi-whisper-worker.medtouradmin.workers.dev) for transcription. While this behavior is clearly aligned with the stated purpose in SKILL.md and scripts/transcribe.sh, the transmission of data to an unverified external domain constitutes a risky capability. No evidence of intentional malice, such as credential theft or secondary data exfiltration, was found.
Capability Assessment
Purpose & Capability
The name/description match the included script and instructions: they POST raw audio to a Whisper Worker /transcribe route with a Bearer token. However the registry metadata does not declare the required WHISPER_WORKER_TOKEN nor does it list required binaries (the script uses curl and jq), which is an inconsistency between claimed requirements and actual runtime needs.
Instruction Scope
SKILL.md and the script are narrowly scoped to uploading an audio file to the given endpoint and extracting text. They do not attempt to read unrelated files or system credentials. Important runtime behavior: audio bytes (potentially sensitive) and the Authorization token are transmitted to the specified workers.dev host; this is expected for the stated purpose but is an important privacy implication.
Install Mechanism
No install spec and only an included shell script — nothing is downloaded or written during install. Low install risk.
Credentials
The skill requires a bearer token (WHISPER_WORKER_TOKEN) to call the endpoint, but the metadata did not declare any required environment variables. The script also depends on curl and jq which are not declared. Requiring a token to use a third‑party transcription endpoint is proportionate to the purpose, but the missing metadata and the fact that audio and tokens are sent to an externally hosted endpoint raise privacy and trust concerns.
Persistence & Privilege
The skill does not request persistent presence (always is false) and does not modify other skills or system-wide configuration.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install cloudflare-whisper-worker - After installation, invoke the skill by name or use
/cloudflare-whisper-worker - Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.0
Initial release: Cloudflare Whisper worker transcription skill with bearer auth and helper script.
Metadata
Frequently Asked Questions
What is Cloudflare Whisper Worker?
Transcribe audio using a deployed Cloudflare Worker Whisper endpoint. Use when converting voice/audio files (wav, mp3, m4a, ogg, webm) to text through the cu... It is an AI Agent Skill for Claude Code / OpenClaw, with 366 downloads so far.
How do I install Cloudflare Whisper Worker?
Run "/install cloudflare-whisper-worker" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is Cloudflare Whisper Worker free?
Yes, Cloudflare Whisper Worker is completely free (open-source). You can download, install and use it at no cost.
Which platforms does Cloudflare Whisper Worker support?
Cloudflare Whisper Worker is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created Cloudflare Whisper Worker?
It is built and maintained by lotfinity (@lotfinity); the current version is v1.0.0.
More Skills