Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
aigc-images
v1.0.0基于 BizyAir 异步 API 的批量多密钥图片生成助手。支持从本地文件或远程 URL 读取多个 API 密钥,批量执行图片生成任务,每个密钥对应一个任务。当用户需要批量生成 BizyAir 图片、多密钥并发执行、分镜场景图生成时必须使用此技能。
⭐ 0· 135·0 current·0 all-time
by@bozoyan
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Suspicious
medium confidencePurpose & Capability
The skill's code and instructions match the stated purpose (batch, multi-key BizyAir image generation). However the registry metadata does not declare the BIZYAIR_API_KEY usage or required binaries even though the SKILL.md and included script expect curl and jq and an environment variable for keys.
Instruction Scope
Instructions explicitly read API keys from a local file (~/.bizyair_keys.txt), a user-specified remote URL, or the environment variable BIZYAIR_API_KEY, write state to /tmp/bizyair.txt, and make outbound requests to api.bizyair.cn. There is an embedded markdown/link artifact ('[bizyair_api.sh](assets/bizyair_api.sh)') injected into a shell snippet that would break if copied/executed. The included script also auto-appends an explicit MODEL_SUFFIX with sexualized and demographic content for prompts that mention models — this is a behavioral side-effect users should be aware of.
Install Mechanism
No install spec (instruction-only) — low risk in that nothing is downloaded at install time. But a shell script asset (assets/bizyair_api.sh) is included in the skill bundle and would be available to run; nothing in the registry triggers an external download, so risk is limited to the provided code.
Credentials
The skill will consume sensitive credentials (one or many BizyAir API keys) via file, URL, or BIZYAIR_API_KEY env var, yet the registry metadata does not list these required credentials. Requesting keys from remote URLs has exfiltration risk if the URL comes from an untrusted source. The number of keys and local-file reading behavior is coherent with the purpose but the lack of declared env requirements is a metadata mismatch and a transparency issue.
Persistence & Privilege
The skill does not request 'always: true' and does not modify other skills or system-wide configs. It writes state and results to /tmp (temporary storage) and does not persist beyond that, which is within expected scope for a CLI-style batch tool.
What to consider before installing
This skill implements batch BizyAir image creation and includes a runnable shell script that will read API keys from a local file, a remote URL, or the BIZYAIR_API_KEY environment variable and then call api.bizyair.cn. Before installing or running it: 1) Inspect the included assets/bizyair_api.sh file line-by-line (it is bundled with the skill). 2) Do not supply real API keys until you are comfortable — prefer testing with a throwaway key or isolated environment. 3) Be aware the script auto-appends a MODEL_SUFFIX containing sexualized and demographic details when prompts mention a model; remove or edit that suffix if undesired. 4) The SKILL.md contains an injected markdown link inside a shell snippet ("[bizyair_api.sh](assets/bizyair_api.sh)") that will break if executed — ask the author to fix it. 5) Confirm you trust the remote key URL if you plan to use that feature (it could expose keys). 6) Note that metadata does not declare required binaries (curl, jq) or the BIZYAIR_API_KEY env var — the manifest should be corrected for transparency. If you need help auditing or sanitizing the script (removing the MODEL_SUFFIX, fixing the broken snippet, or running in an isolated container), consider asking for those changes before use.Like a lobster shell, security has layers — review code before you run it.
latestvk97ct72fwprrehdmyqy8x3znrn835018
License
MIT-0
Free to use, modify, and redistribute. No attribution required.