iflytek-voiceclone-tts

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.90). The skill makes runtime calls to http://opentrain.xfyousheng.com/voice_train and http://avatar-hci.xfyousheng.com/aiauth/v1/token (for training text, uploads, token auth) and to wss://cn-huabei-1.xf-yun.com/v1/private/voice_clone (for WebSocket TTS), which are invoked during runtime and provide training text/tokens and perform synthesis — i.e., they directly control prompts/instructions and runtime behavior.