← 返回 Skills 市场
kunyancai

VoiceTrust

作者 KunyanCAI · GitHub ↗ · v0.4.1 · MIT-0
cross-platform ✓ 安全检测通过
145
总下载
1
收藏
0
当前安装
3
版本数
在 OpenClaw 中安装
/install voicetrust
功能描述
Interpret VoiceTrust results for owner verification on voice/audio inputs. Use when you need the meaning of VoiceTrust fields, trust labels, command-gating d...
安全使用建议
This skill appears to do what it claims: local speaker verification using SpeechBrain models. Before installing/running: 1) Inspect and verify the raw model URLs and the hard-coded SHA-256 checksums in scripts/ensure_models.py (the script will fail if checksums don't match). Prefer obtaining model checkpoints from the official upstream (SpeechBrain / HuggingFace) if you want stronger provenance guarantees. 2) Be aware the runtime will write enrollment/voiceprint files to runtime/data/owners and runtime/data/voiceprints — do not share those files if you want the enrolled identity private. 3) The runtime requires heavy ML deps (torch, speechbrain, etc.) and optionally ffmpeg; expect a large install and CPU/GPU resource use. 4) If you are concerned about network supply-chain risk, run ensure_models.py only after manually auditing the URLs or by populating the assets directory with checkpoints you obtained from an upstream release. Otherwise the skill is internally consistent and proportionate for its stated purpose.
功能分析
Type: OpenClaw Skill Name: voicetrust Version: 0.4.1 The VoiceTrust skill bundle provides a legitimate implementation for speaker verification and trust scoring using the SpeechBrain framework. It includes well-structured code for managing local voice profiles, processing audio via soundfile or ffmpeg, and providing the AI agent with clear logic for command-gating decisions. Security best practices are observed, such as SHA256 hash verification for model assets downloaded by `scripts/ensure_models.py` and explicit documentation regarding the privacy and local-only storage of biometric enrollment data. No evidence of malicious intent, data exfiltration, or prompt injection was found.
能力评估
Purpose & Capability
Name/description match the implementation: code implements speaker verification, audio quality, and decision gating. Requested dependencies (torch/speechbrain) and local model files are appropriate for a local speaker-verification system. No unrelated credentials, binaries, or config paths are requested.
Instruction Scope
SKILL.md limits runtime actions to running STT, running VoiceTrust, and local bootstrap via references/quickstart.md. The included CLI/demo scripts and pipeline operate on local audio files and local owner enrollment state; they do not instruct reading unrelated system files or exfiltrating data. The skill explicitly warns owner enrollment data should remain local.
Install Mechanism
The bundle is instruction-only (no platform install spec), but includes scripts that download large model checkpoint files at runtime from a GitHub raw mirror (raw.githubusercontent.com/ChuaKhunngan/VoiceTrust/...). This is a reasonable approach for model-heavy tools, and the downloader includes hard-coded SHA-256 checks for each file (good). Still, downloading binary checkpoints from a personal mirror has supply-chain risk—users should verify the canonical repo, the raw URLs, and checksums before running downloads. The use of GitHub raw is common, but the mirror is not an official upstream release host (the script documents the SpeechBrain upstream).
Credentials
The skill declares no required environment variables or credentials and operates on local filesystem paths under the skill runtime (assets/, data/). The README mentions resolving FFMPEG_BIN if present, which is a reasonable runtime hint; no unexplained SECRET/TOKEN/PASSWORD requirements are present.
Persistence & Privilege
always is false and the skill does not request persistent platform-level privileges. It stores local owner enrollment and voiceprints under runtime/data/owners and runtime/data/voiceprints (expected for this purpose). It does not modify other skills or system-wide agent config.
如何使用
  1. 确保已安装 OpenClaw(本地或 Docker 部署)
  2. 在对话框中输入安装命令:/install voicetrust
  3. 安装完成后,直接呼叫该 Skill 的名称或使用 /voicetrust 触发
  4. 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v0.4.1
v0.4.1 - added expected SHA256 verification for model downloads - clarified model provenance and upstream attribution - documented local biometric data handling and privacy boundaries No core VoiceTrust runtime logic was changed in this release.
v0.4.0
This update is primarily a publication-readiness pass for ClawHub. Changes in v0.4.0 are focused on transparency and reviewability, not new behavior: - repository metadata was aligned to the canonical VoiceTrust repository - model provenance was clarified in both docs and downloader output - the downloader now explicitly states that the underlying ECAPA model originates from the upstream SpeechBrain release: https://huggingface.co/speechbrain/spkrec-ecapa-voxceleb - ffmpeg handling was documented more clearly for portability and review purposes No core VoiceTrust verification logic was changed in this release. This is a packaging / review-friction reduction update for ClawHub publication.
v0.3.0
VoiceTrust is a trust layer for voice messages in OpenClaw. When a voice message comes in, STT can tell the system what was said. VoiceTrust adds the other half of the picture: who likely said it, and how much that voice should be trusted. It is built for a simple job: work with any OpenClaw-compatible STT path check whether the speaker likely matches the enrolled owner combine transcript + trust before the agent replies or acts stop risky voice-command execution when trust is too low VoiceTrust does not provide STT itself. It is designed to sit alongside whatever STT path OpenClaw is already using, and remain compatible with different OpenClaw transcription setups. This makes it useful for voice workflows where messages are not just content, but also instructions, control input, or identity-sensitive actions.
元数据
Slug voicetrust
版本 0.4.1
许可证 MIT-0
累计安装 0
当前安装数 0
历史版本数 3
常见问题

VoiceTrust 是什么?

Interpret VoiceTrust results for owner verification on voice/audio inputs. Use when you need the meaning of VoiceTrust fields, trust labels, command-gating d... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 145 次。

如何安装 VoiceTrust?

在 OpenClaw 或 Claude Code 对话框中运行命令「/install voicetrust」即可一键安装,无需额外配置。

VoiceTrust 是免费的吗?

是的,VoiceTrust 完全免费,采用 MIT-0 许可证,可自由下载、安装和使用。

VoiceTrust 支持哪些平台?

VoiceTrust 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。

谁开发了 VoiceTrust?

由 KunyanCAI(@kunyancai)开发并维护,当前版本 v0.4.1。

推荐 Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191115 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 留言讨论