← 返回 Skills 市场

Avatar

Name: Avatar
Author: johannes-berggren

作者 Johannes-Berggren · GitHub ↗ · v1.0.0

macoslinuxwindows ⚠ suspicious

1389

总下载

当前安装

版本数

在 OpenClaw 中安装

/install avatar

功能描述

Interactive AI avatar with Simli video rendering and ElevenLabs TTS

使用说明 (SKILL.md)

Avatar Skill

Interactive AI avatar interface for OpenClaw with real-time lip-synced video and text-to-speech.

Features

Voice Responses: Speaks conversational summaries using ElevenLabs TTS
Visual Avatar: Realistic lip-synced video via Simli
Detail Panel: Shows formatted markdown alongside spoken responses
Multi-language: Supports multiple languages for speech and TTS
Slack/Email: Forward responses to Slack DMs or email (when configured)
Stream Deck: Optional hardware control with Elgato Stream Deck

Setup

Get API keys:
- Simli - Avatar rendering
- ElevenLabs - Text-to-speech

Set environment variables:

export SIMLI_API_KEY=your-key
export ELEVENLABS_API_KEY=your-key

Start the avatar:
```
openclaw-avatar
```
Open http://localhost:5173

Response Format

When responding to avatar queries, use this format:

\x3Cspoken>
A short conversational summary (1-3 sentences). NO markdown, NO formatting. Plain speech only.
\x3C/spoken>
\x3Cdetail>
Full detailed response with markdown formatting (bullet points, headers, bold, etc).
\x3C/detail>

Guidelines

spoken: Brief, natural, conversational. This is read aloud.
detail: Comprehensive information with proper markdown.
Always include both sections.

Example

User: "What meetings do I have today?"

\x3Cspoken>
You have three meetings today. Your first one is a team standup at 9 AM, then a product review at 2 PM, and finally a 1-on-1 with Sarah at 4 PM.
\x3C/spoken>
\x3Cdetail>
## Today's Meetings

### 9:00 AM - Team Standup
- **Duration**: 15 minutes
- **Attendees**: Engineering team

### 2:00 PM - Product Review
- **Duration**: 1 hour
- **Attendees**: Product, Design, Engineering leads

### 4:00 PM - 1:1 with Sarah
- **Duration**: 30 minutes
- **Notes**: Follow up on project timeline
\x3C/detail>

Session Key

Avatar responses use session key: agent:main:avatar

安全使用建议

What to consider before installing: - The skill is generally consistent with an avatar frontend (Simli + ElevenLabs) but the server also connects to an OpenClaw gateway and supports Slack/email/Stream Deck integrations. Those integrations require additional environment variables (OPENCLAW_TOKEN, SLACK_BOT_TOKEN) even though the SKILL.md only lists SIMLI_API_KEY and ELEVENLABS_API_KEY. - The server writes a device-key.json (an on-disk private key) and establishes persistent WebSocket connections to the configured gateway URL. Expect a persistent process and created files in the working directory. - The code intentionally returns the Simli API key to the browser via /api/client-config. If you consider your SIMLI_API_KEY sensitive, that means the key will be exposed to any code served to the browser. Do not run this with production secrets unless you accept that exposure. - If you plan to enable Slack or email forwarding, the skill will require additional tokens; enable only with least-privilege tokens and review the relevant code paths (/api/send-slack, /api/send-email) before providing those credentials. - Installation via npm (global) installs code from the npm registry; verify the package author, repository, and integrity before trusting it. Consider running the server in an isolated environment (container, VM) and binding ports/firewalls to localhost only. - If you need to proceed, audit the server endpoints (especially /api/*), confirm where gatewayUrl points (default is ws://127.0.0.1:18789) and whether OPENCLAW_TOKEN will be used, and avoid using production credentials until you review and understand the data flows. If you want, I can: - Point out the exact lines where additional env vars are read and where simliApiKey is leaked to the client, or - Extract and summarize all server endpoints and what they expose so you can decide whether to run it.

功能分析

Type: OpenClaw Skill Name: avatar Version: 1.0.0 The skill is classified as suspicious due to several high-risk capabilities, despite their stated purpose. The `src/server.ts` file performs server-side prompt injection into the AI agent, explicitly granting it 'full access to HubSpot, Gmail, Calendar, Notion, and Slack,' which represents a broad and powerful capability that could be misused if the agent itself is compromised. Additionally, `start-kiosk.sh` executes shell commands and `osascript` for GUI automation, and `src/server.ts` generates and stores a cryptographic keypair locally (`./device-key.json`) for authentication, and makes direct API calls to Slack using a bot token. While these actions are presented as necessary for the avatar's functionality, they involve significant privileges and sensitive operations without clear malicious intent in the provided code.

能力评估

ℹ Purpose & Capability

The name/description (avatar with Simli + ElevenLabs TTS) matches the code and dependencies (simli-client, ElevenLabs TTS calls). However the server also integrates with an OpenClaw gateway and optional Slack/email/Stream Deck integrations — these require additional credentials/configuration not clearly declared in the SKILL.md required envs.

⚠ Instruction Scope

SKILL.md only declares SIMLI_API_KEY and ELEVENLABS_API_KEY and instructs installing and running the CLI, but runtime code reads additional environment variables (OPENCLAW_TOKEN, SLACK_BOT_TOKEN, ELEVENLABS_VOICE_ID) and exposes the Simli API key to the browser via /api/client-config. The server also creates a persistent device-key.json (private key) and opens WebSocket connections to the configured gateway URL — these actions are not described in the metadata/instructions.

ℹ Install Mechanism

This is an instruction-only skill but SKILL.md suggests 'npm install -g openclaw-avatar'. The code and package.json look like a normal npm package with reasonable dependencies; installing from npm is moderate risk and should be done from a trusted source. There is no remote URL download or extractor in the install spec.

⚠ Credentials

Declared required env vars (SIMLI_API_KEY, ELEVENLABS_API_KEY) are expected. But the code also reads OPENCLAW_TOKEN and SLACK_BOT_TOKEN (and optional ELEVENLABS_VOICE_ID) without those being declared as required. Worse, the Simli API key is included in the client config and served to the browser, which exposes a secret that SKILL.md does not warn about.

⚠ Persistence & Privilege

The server generates and writes a device-key.json (private key + public key) to the working directory, and will maintain long-lived WebSocket connections to an OpenClaw gateway. always:false (normal), but the written key and persistent gateway connection increase the skill's persistence and blast radius and are not clearly documented in SKILL.md.

如何使用

确保已安装 OpenClaw（本地或 Docker 部署）
在对话框中输入安装命令：/install avatar
安装完成后，直接呼叫该 Skill 的名称或使用 /avatar 触发
根据 Skill 的参数说明提供必要输入，即可获得结构化输出

版本历史

v1.0.0

Initial release: Interactive AI avatar with Simli video and ElevenLabs TTS

元数据

Slug avatar

版本 1.0.0

许可证 —

累计安装 9

当前安装数 9

历史版本数 1

常见问题

Avatar 是什么？

Interactive AI avatar with Simli video rendering and ElevenLabs TTS. 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件，目前累计下载 1389 次。

如何安装 Avatar？

在 OpenClaw 或 Claude Code 对话框中运行命令「/install avatar」即可一键安装，无需额外配置。

Avatar 是免费的吗？

是的，Avatar 完全免费（开源免费），可自由下载、安装和使用。

Avatar 支持哪些平台？

Avatar 跨平台运行，可在任意部署了 OpenClaw / Claude Code 的环境中使用（macos, linux, windows）。

谁开发了 Avatar？

由 Johannes-Berggren（@johannes-berggren）开发并维护，当前版本 v1.0.0。