Back to skill
Skillv1.0.0
ClawScan security
图片提示词生成 · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignMar 11, 2026, 5:23 AM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill's code, instructions, and requested permissions are coherent with an image-prompt generator that calls a local OpenClaw Gateway; it does not request credentials or include unexplained external endpoints.
- Guidance
- This skill appears to do what it says: a UI that forwards your image-description + a system prompt to a local OpenClaw Gateway and returns formatted prompts. Before installing, verify that your OpenClaw Gateway (openclaw.json) is configured to route to trusted model providers — the skill itself only calls localhost, but the Gateway can forward prompts externally. Confirm you are comfortable with network permission (needed to contact the Gateway) and review openclaw.json if you want to ensure no unexpected external endpoints are used. No API keys or other secrets are requested by this skill.
Review Dimensions
- Purpose & Capability
- okThe name/description match the included UI code and SKILL.md: a prompt-generation front end that formats multi-tool prompts. The only declared permission is network (used to call the Gateway), and there are no unrelated environment variables or binaries requested.
- Instruction Scope
- noteSKILL.md and the app explicitly send user input and a SYSTEM_PROMPT to http://127.0.0.1:18789/v1/chat/completions (local OpenClaw Gateway). That is within scope. Note: the Gateway may route requests to external model providers according to your openclaw.json configuration, so user prompts could be forwarded outside the machine depending on your Gateway settings.
- Install Mechanism
- okThere is no install spec (no downloads or installers). The package includes frontend source files (React) but does not perform any archive downloads or write external binaries. This is lower risk than an installer that fetches remote code.
- Credentials
- okThe skill declares no required environment variables or credentials. It does request network permission in claw.json, which is proportionate for making HTTP requests to the local Gateway. No secrets are requested or embedded in the code.
- Persistence & Privilege
- okalways is false and the skill is user-invocable. It does not request persistent elevated privileges or modify other skills or system-wide settings. Autonomous invocation is allowed (platform default) but not combined with other high-risk factors here.