ClawHub
Back to skill
v1.0.2

ORF

ReviewClawScan verdict for this skill. Analyzed May 1, 2026, 4:52 AM.

Analysis

The ORF news fetching is purpose-aligned, but normal image generation under-discloses that it installs Python packages and uses a local Gemini/Nano Banana API key.

GuidanceThe ORF RSS digest behavior looks aligned with the stated purpose, and there is no artifact-backed evidence of exfiltration or destructive behavior. Before installing, confirm you are comfortable with the skill creating a local Python virtual environment, installing `google-genai` and `pillow` from PyPI, and using a Gemini/Nano Banana API key from `GEMINI_API_KEY` or your OpenClaw config to call Google for the final image.

Findings (3)

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

Abnormal behavior control

Checks for instructions or behavior that redirect the agent, misuse tools, execute unexpected code, cascade across systems, exploit user trust, or continue outside the intended task.

Agentic Supply Chain Vulnerabilities
SeverityMediumConfidenceHighStatusConcern
scripts/generate_zib_nano_banana.sh
python3 -m venv "$VENV_DIR"; "$PY" -m pip install --quiet --disable-pip-version-check google-genai pillow

The normal image-generation helper creates a virtual environment and installs unpinned packages at first use. The install spec says there is no install spec, so this dependency installation is not clearly surfaced before invocation.

User impactFirst use can download and run third-party package code into a local environment, creating supply-chain exposure and changing local files under `./tmp/orf-venv`.
RecommendationMove dependencies into an explicit install specification, pin package versions or hashes, and disclose the first-run network installation before the skill is invoked.
Agentic Supply Chain Vulnerabilities
SeverityLowConfidenceMediumStatusNote
scripts/zib_prompt.mjs
return `a dedicated panel (${layout}) with exactl
…[truncated]

The invoked prompt-builder source is truncated in the supplied artifact content. The visible portion is consistent with prompt construction, but the complete helper is not fully visible in the provided artifacts.

User impactA reviewer cannot see the full contents of a script that the skill's normal workflow invokes.
RecommendationPublish and review the complete `scripts/zib_prompt.mjs` file before installation or distribution.
Permission boundary

Checks whether tool use, credentials, dependencies, identity, account access, or inter-agent boundaries are broader than the stated purpose.

Identity and Privilege Abuse
SeverityMediumConfidenceHighStatusConcern
scripts/nano_banana_mood.py
env_key = (os.environ.get("GEMINI_API_KEY") or "").strip() ... cfg_path = Path.home() / ".openclaw" / "openclaw.json" ... get("nano-banana-pro", {}).get("apiKey")

The image generator uses a Gemini/Nano Banana API key from the environment or local OpenClaw config. This is purpose-aligned for Nano Banana image generation, but the supplied metadata declares no credential requirement.

User impactInvoking the skill may use your stored Gemini/Nano Banana account key and quota even though the registry metadata does not clearly declare that credential use.
RecommendationDeclare the required credential in metadata, explain that the key is used only for image generation, and require clear user setup or approval before relying on a local OpenClaw API key.