Stats
Actions
Tags
From speak-pack
Delivers Speak API security practices: key management, audio privacy by deleting files post-process, student PII protection, COPPA/FERPA compliance checklists and error handling.
How this skill is triggered — by the user, by Claude, or both
Slash command
/speak-pack:speak-security-basicsThis skill is limited to the following tools:
The summary Claude sees in its skill listing — used to decide when to auto-load this skill
Security best practices for Speak API keys, audio data privacy, student data protection, and COPPA/FERPA compliance.
Security best practices for Speak API keys, audio data privacy, student data protection, and COPPA/FERPA compliance.
speak-install-auth setup# Never commit API keys
echo '.env' >> .gitignore
echo '.env.local' >> .gitignore
# Use secrets manager in production
export SPEAK_API_KEY="$(aws secretsmanager get-secret-value --secret-id speak/api-key --query SecretString --output text)"
// Speak processes audio on their servers — do NOT store student audio locally
// unless required by your application
class PrivacyAwareClient {
async assessAndClean(audioPath: string, targetText: string, language: string) {
try {
const result = await this.client.assessPronunciation({
audioPath, targetText, language,
});
return result;
} finally {
// Delete local audio file after assessment
fs.unlinkSync(audioPath);
}
}
}
| Error | Cause | Solution |
|---|---|---|
| 401 Unauthorized | Invalid API key | Verify SPEAK_API_KEY environment variable |
| 429 Rate Limited | Too many requests | Wait Retry-After seconds, use backoff |
| Audio format error | Wrong codec/sample rate | Convert to WAV 16kHz mono with ffmpeg |
| Session expired | Timeout after 30 min | Start a new conversation session |
See speak-prod-checklist for production readiness.
Basic: Apply security basics with default configuration for a standard Speak integration.
Advanced: Customize for production with error recovery, monitoring, and team-specific requirements.
npx claudepluginhub jeremylongshore/claude-code-plugins-plus-skills --plugin speak-packConfigures Speak API for handling student audio data, assessments, and learning progress with GDPR/COPPA compliance using TypeScript and OpenAI integrations.
Implements AssemblyAI security: API key env management, browser temporary tokens, PII redaction in transcripts/audio, data deletion for compliance.
Applies Deepgram security best practices: scoped API keys, rotation, PII redaction, temp client keys, SSRF prevention, and audit logging for integrations.