Skip to content
← Registry
Trust Report

elevenlabs-agents

Create, manage, and deploy ElevenLabs conversational AI agents. Use when the user wants to work with voice agents, list their agents, create new ones, or manage agent configurations.

78
CONDITIONAL
Format: openclawScanner: v0.8.0Duration: 7msScanned: 19d ago · Jun 18, 1:57 AMSource →
Embed this badge
AgentVerus CONDITIONAL 78AgentVerus CONDITIONAL 78AgentVerus CONDITIONAL 78
[![AgentVerus](https://agentverus.ai/api/v1/skill/7ace0a36-b712-482b-97c4-b3bc923fa95e/badge)](https://agentverus.ai/skill/7ace0a36-b712-482b-97c4-b3bc923fa95e)
Community Discussion

Community Comments

Public comments are the active feedback surface on skill reports right now. Use them to share implementation notes, edge cases, and operator context.

0 comments

Sign in to comment on this skill

No comments yet. Be the first to share your thoughts.

Continue the workflow

Keep this report moving through the activation path: rescan from the submit flow, capture real-world interactions, and wire the trust endpoint into your automation.

https://agentverus.ai/api/v1/skill/7ace0a36-b712-482b-97c4-b3bc923fa95e/trust
Personalized next commands

Use these current-skill command blocks to keep this exact report moving through your workflow.

Record an interaction
curl -X POST https://agentverus.ai/api/v1/interactions \
  -H "Authorization: Bearer at_your_api_key" \
  -H "Content-Type: application/json" \
  -d '{"agentPlatform":"openclaw","skillId":"7ace0a36-b712-482b-97c4-b3bc923fa95e","interactedAt":"2026-03-15T12:00:00Z","outcome":"success"}'
Fetch trust JSON
curl https://agentverus.ai/api/v1/skill/7ace0a36-b712-482b-97c4-b3bc923fa95e/trust

Category Scores

86
Permissions
60
Injection
92
Dependencies
85
Behavioral
70
Content
100
Code Safety

Findings (8)

highConcealment directive detected-25

Found concealment directive pattern: "don't mention them to user"

These are implementation details - don't mention them to users unless they specifically ask about project structure.

Remove concealment directives. Skills must be transparent about all operations performed.

injectionASST-01
mediumCapability contract mismatch: inferred file write is not declared-8

The scanner inferred a risky capability from the skill content/metadata, but no matching declaration was found. Add a declaration with a clear justification, or remove the behavior.

Content pattern: Create config file

Declare this capability explicitly in frontmatter permissions with a specific justification, or remove the risky behavior.

permissionsASST-03
mediumCapability contract mismatch: inferred network access is not declared-6

The scanner inferred a risky capability from the skill content/metadata, but no matching declaration was found. Add a declaration with a clear justification, or remove the behavior.

Content pattern: webhook

Declare this capability explicitly in frontmatter permissions with a specific justification, or remove the risky behavior.

permissionsASST-04
mediumSocial engineering detected-15

Found social engineering pattern: "silently run"

Look for `agents.json` in the working directory. If missing, silently run:

Remove social engineering instructions. Skills must be transparent about their actions.

injectionASST-07
mediumPackage-managed project bootstrap dependency-8

The skill bootstraps a package-managed project structure, which adds supply-chain exposure through manifest files, build configuration, and package-manager workflows.

project structure

Review which external services or providers the skill depends on, what data crosses that boundary, and whether the dependency is necessary for the intended workflow.

dependenciesASST-04
mediumAutonomous action without confirmation detected-10

Found autonomous action without confirmation pattern: "silently run"

Look for `agents.json` in the working directory. If missing, silently run:

Require user confirmation before performing destructive or irreversible actions.

behavioralASST-09
mediumCredential vault enrollment detected (inside code block)-5

Found credential vault enrollment pattern: "auth login"

If not authenticated, tell the user: "You're not logged into ElevenLabs. I'll need your API key to continue." Then run `elevenlabs auth login` and guide them through it.

Treat credential-vault setup and stored-login workflows as sensitive credential handling. Be explicit about what secrets enter the vault, where they are stored, and how they are protected or revoked.

behavioralASST-05
lowNo explicit safety boundaries-10

The skill does not include explicit safety boundaries defining what it should NOT do.

No safety boundary patterns found

Add a 'Safety Boundaries' section listing what the skill must NOT do (e.g., no file deletion, no network access beyond needed APIs).

contentASST-09