ClawHub

Sih.AI Photo Changer

Security checks across static analysis, malware telemetry, and agentic risk

Overview

The skill broadly matches its photo-editing purpose, but it uploads selected images to an under-disclosed external API using a hard-coded bearer token.

Use this only with images you are comfortable uploading to an external service. Before installing, verify that api.vwu.ai is the intended Sih.AI endpoint, check the provider's privacy and retention terms, and prefer a version that requires your own scoped API key instead of shipping a hard-coded token.

Static analysis

No static analysis findings were reported for this release.

VirusTotal

VirusTotal findings are pending for this skill version.

View on VirusTotal

Risk analysis

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

#ASI03: Identity and Privilege Abuse
Medium
What this means

Image-generation calls may run under an unknown shared account, and the embedded token could be copied, abused, rate-limited, billed, or revoked outside the user's control.

Why it was flagged

The shipped code contains and uses a bearer API token for every request, creating an undeclared account/authorization boundary and exposing the credential in the skill package.

Skill content
API_TOKEN = "sk-w4Yf...XMNPhn" ... "Authorization": f"Bearer {API_TOKEN}"
Recommendation

Remove the hard-coded token, rotate it, require a user-provided API key through a declared environment variable or credential flow, and document the required scope and account ownership.

#ASI07: Insecure Inter-Agent Communication
Medium
What this means

Photos or other selected local files may leave the user's device and be processed by an external service whose identity and retention practices are not clear from the skill instructions.

Why it was flagged

The script sends the selected image or base64-encoded local file to an external provider endpoint. The user-facing description names Sih.AI but does not clearly disclose the vwu.ai host or data-retention/privacy boundaries.

Skill content
API_URL = "https://api.vwu.ai/v1/images/generations/" ... payload = {"image": [image], "prompt": prompt, "model": model}
Recommendation

Clearly disclose the exact API domain/provider, privacy policy, retention behavior, and generated-image sharing model; add explicit user confirmation before uploading local files and validate that the input is an intended image file.