← 返回 Skills 市场
550
总下载
0
收藏
1
当前安装
3
版本数
在 OpenClaw 中安装
/install tts-autoplay
功能描述
Auto-play TTS voice files with wake word detection. Only plays audio when user message contains wake words like "语音", "念出来", "voice", etc. Perfect for Webcha...
安全使用建议
Do not run the 'powershell -ExecutionPolicy Bypass -File ...' commands until you obtain and review the actual .ps1 scripts. Steps to take before installing:
- Verify source: visit the GitHub homepage linked in the SKILL.md and ensure the repo is the official one and contains the expected scripts.
- Inspect scripts: open install.ps1, tts-autoplay-wakeword.ps1, uninstall.ps1 and any files they call. Look for network calls, encoded/obfuscated code, or commands that upload data or modify system-wide settings.
- Check data access: confirm exactly which files/logs the scripts read (openclaw.json, chat logs, C:\tmp\openclaw) and whether that level of access is acceptable for your environment.
- Avoid blind execution: do not run scripts with ExecutionPolicy Bypass unless you trust and have reviewed them. Run them in a sandboxed/testing machine first.
- Prefer the 'tagged' approach: the docs recommend using auto: "tagged" and having the model add [[tts]] tags (simpler, avoids session-history monitoring). Consider implementing wake-word logic inside the AI skill (add [[tts]] on wake words) rather than running a persistent process that reads chat logs.
What would change this assessment: provide the actual PowerShell script sources (install.ps1, tts-autoplay-wakeword.ps1, tts-autoplay.ps1). If those scripts are small, local, transparent (no network/exfiltration), and only read the declared TTS dirs and openclaw.json, the rating could be upgraded to benign.
功能分析
Type: OpenClaw Skill
Name: tts-autoplay
Version: 2.0.1
The skill's documentation (SKILL.md, README.md) instructs users to execute PowerShell scripts (e.g., install.ps1, tts-autoplay-wakeword.ps1) using `powershell -ExecutionPolicy Bypass`. While this is a common practice for running local, unsigned scripts, it bypasses a security feature and represents a significant vulnerability risk if the underlying scripts were malicious. The actual PowerShell script files were not provided for analysis, preventing a full assessment of their intent. However, the instruction to bypass execution policy itself is a risky capability, leading to a 'suspicious' classification.
能力评估
Purpose & Capability
Requiring PowerShell on Windows is appropriate for a PowerShell-based TTS autoplay skill, but the SKILL.md repeatedly instructs the user/agent to run local scripts (install.ps1, tts-autoplay-wakeword.ps1, etc.) while the package as provided contains only documentation files and no .ps1 scripts. That mismatch (instructions assume code that isn't present) is an incoherence and increases risk.
Instruction Scope
The runtime instructions direct running PowerShell with ExecutionPolicy Bypass and describe implementations that read session history, monitor local TTS file directories (e.g., C:\tmp\openclaw) and edit ~/.openclaw/openclaw.json. Reading session/chat history and continuous filesystem monitoring are within the feature scope, but they access potentially sensitive chat logs and the instructions give broad authority to run unreviewed scripts — this should be audited. The skill also claims 'No external API calls' but without the scripts present this claim cannot be validated.
Install Mechanism
This is an instruction-only skill (no install spec in registry). SKILL.md shows install/run commands that execute local PowerShell scripts. Running PowerShell with '-ExecutionPolicy Bypass -File' is common but elevates the impact of malicious scripts. Because the actual scripts are not bundled, the install step would require pulling code from the referenced repo or running commands that will fail — verify the source before running.
Credentials
The skill declares no required environment variables or config paths, yet the documentation instructs editing and reading openclaw.json and session/log files. Accessing chat history/config files is reasonable for wake-word detection, but those paths should be declared. The absence of declared config/paths is an inconsistency that reduces transparency about what will be accessed.
Persistence & Privilege
The skill suggests running long‑running/monitoring PowerShell scripts that would persistently watch directories and potentially read recent session history. While 'always' is false, persistent local monitoring with access to chat logs is a meaningful privilege; confirm whether the installed scripts run as background services, what account they use, and ensure they don't alter other skills' configs.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install tts-autoplay - 安装完成后,直接呼叫该 Skill 的名称或使用
/tts-autoplay触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v2.0.1
Added wake word detection and tagged mode support
v2.0.0
Added wake word detection and tagged mode support for smart voice triggering
v1.0.0
Initial release - Automatic TTS voice playback for Windows Webchat users
元数据
常见问题
TTS AutoPlay with Wake Word 是什么?
Auto-play TTS voice files with wake word detection. Only plays audio when user message contains wake words like "语音", "念出来", "voice", etc. Perfect for Webcha... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 550 次。
如何安装 TTS AutoPlay with Wake Word?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install tts-autoplay」即可一键安装,无需额外配置。
TTS AutoPlay with Wake Word 是免费的吗?
是的,TTS AutoPlay with Wake Word 完全免费(开源免费),可自由下载、安装和使用。
TTS AutoPlay with Wake Word 支持哪些平台?
TTS AutoPlay with Wake Word 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(windows)。
谁开发了 TTS AutoPlay with Wake Word?
由 WangZjhz(@wangzjhz)开发并维护,当前版本 v2.0.1。
推荐 Skills