Flutter AppStore Doc UI Kit
Security checks across static analysis, malware telemetry, and agentic risk
Overview
The skill coherently generates local App Store documentation, UI mockups, and icons, with only expected local script execution and optional OpenAI image-generation access to review.
This skill appears safe to install for its stated purpose. Before using it, choose a dedicated output folder, review each approval gate, and only enable the OpenAI image-generation option if you are comfortable using your API key and sending prompt-level app concept details to the provider.
Static analysis
No static analysis findings were reported for this release.
VirusTotal
VirusTotal findings are pending for this skill version.
Risk analysis
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
Running the skill may create local documentation, UI, and icon files in the selected output folder.
The skill directs the agent/user to run a local Python helper script, but the script is included in the artifact set and its behavior is aligned with generating the requested deliverable files.
python3 scripts/generate_appstore_pack.py \ --app-name "SnapSort" \ --out ./out/snapsort
Use an output directory you intend to populate, and review generated files before using them in an App Store submission.
If you choose AI image generation, your OpenAI account may be used and billed according to your provider settings.
The optional AI image-generation path requires an OpenAI API key, which is expected for the stated image-generation capability and is disclosed rather than hidden.
Required auth: - `OPENAI_API_KEY` in environment (or another confirmed image model backend configured by user).
Set the API key only when you want AI image generation, and use a key with appropriate account controls or spending limits.
App concept details and page descriptions used in prompts may be sent to the configured image model provider.
The script sends generated UI prompts to OpenAI for image generation. The prompts are derived from the approved app document and page names, and this provider use is disclosed by the skill.
url = "https://api.openai.com/v1/images/generations"
Do not use the AI image path with confidential product details unless you are comfortable sending those prompt details to the provider.