text-to-speech

The skill is mostly coherent with its stated TTS purpose, but it carries medium risk because it requires installing external skills/CLI tooling, uses a registry-mediated trust chain, and routes requests through the inference.sh platform rather than direct vendor APIs. This looks more like a platform wrapper than malware, but the transitive installation pattern and installer trust questions make it suspicious rather than fully benign.