Is kevin37li/gettr-transcribe safe?

https://github.com/openclaw/skills/tree/main/skills/kevin37li/gettr-transcribe

98
SAFE

This is a legitimate skill for downloading and transcribing audio from GETTR posts using local MLX Whisper processing. The skill contains well-written shell scripts with proper safety measures, accesses only its own files, and shows no signs of malicious behavior.

Category Scores

Prompt Injection 100/100 · 30%
Data Exfiltration 100/100 · 25%
Code Execution 95/100 · 20%
Clone Behavior 100/100 · 10%
Canary Integrity 100/100 · 10%
Behavioral Reasoning 95/100 · 5%

Findings (2)

LOW Shell scripts included -5

The skill includes shell scripts for downloading audio and running the transcription pipeline. These are legitimate scripts with proper error handling and parameter validation for the stated purpose.

INFO Resource-intensive operations -5

The skill performs audio downloading and transcription which can be CPU and memory intensive operations, but this is expected for the stated functionality.