ClawHub

Zhipu Image Generator

Security checks across malware telemetry and agentic risk

Overview

This skill is a straightforward Zhipu image-generation helper, but users should know their prompts and API key are sent to Zhipu’s external service.

Install only if you are comfortable sending image prompts to Zhipu AI and using your Zhipu API quota. Do not include secrets, personal data, or confidential business text in prompts, and keep ZHIPU_API_KEY private.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (3)

Missing User Warnings

Medium
Confidence
94% confidence
Finding
The usage documentation encourages users to submit arbitrary prompts for image generation but does not clearly warn that those prompts are transmitted to Zhipu's external API service. Users may unknowingly send sensitive, proprietary, or personal data off-platform, which is a privacy and data-handling risk made more relevant because the skill is explicitly designed to forward free-form text to a third party.

Missing User Warnings

Medium
Confidence
92% confidence
Finding
The script sends the user-supplied prompt to Zhipu AI's external API without any explicit warning, consent step, or notice that the prompt leaves the local environment. This is a real privacy issue because prompts may contain sensitive data, and the skill context is image generation where users may casually include private or proprietary content.

External Transmission

Medium
Category
Data Exfiltration
Content
echo "Size: $SIZE"
echo "Watermark: $WATERMARK"

RESPONSE=$(curl -s -X POST "$API_URL" \
    -H "Authorization: Bearer $API_KEY" \
    -H "Content-Type: application/json" \
    -d "{
Confidence
95% confidence
Finding
curl -s -X POST "$API_URL" \ -H "Authorization: Bearer $API_KEY" \ -H "Content-Type: application/json" \ -d

VirusTotal

62/62 vendors flagged this skill as clean.

View on VirusTotal