Chen Nano Banana Pro
AdvisoryAudited by VirusTotal on Mar 22, 2026.
Overview
Type: OpenClaw Skill Name: chen-nano-banana-pro Version: 1.0.0 The skill is a functional wrapper for image generation and editing using the Google GenAI library. While it references a likely fictitious or placeholder model name ('gemini-3-pro-image-preview') and contains hardcoded absolute paths in SKILL.md (e.g., /Users/apple/...), the underlying Python script (scripts/generate_image.py) contains no malicious logic, data exfiltration, or unauthorized execution. It correctly handles API keys via environment variables or arguments and uses standard libraries (PIL, google-genai) for its stated purpose.
Findings (0)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
The skill may fail on another machine or, worse, run a different local script at that path if one exists, potentially handling the user's API key, prompt, or images outside the reviewed package.
The command uses a hard-coded absolute path for a different skill slug than the supplied registry entry and does not reference the packaged script by a portable relative path.
command: uv run /Users/apple/.openclaw/workspace/skills/nano-banana-pro/scripts/generate_image.py
Install only after verifying the command points to this skill's packaged scripts/generate_image.py, and prefer a corrected package with matching registry metadata, _meta.json, and portable paths.
When run, uv may install newer matching dependency versions, so behavior can change over time based on package updates.
The uv script declares runtime dependencies with lower-bound version ranges rather than pinned versions or a lockfile.
dependencies = [ # "google-genai>=1.0.0", # "pillow>=10.0.0", # ]
Prefer pinned dependency versions or a lockfile, especially before using the skill in sensitive or production workflows.
The tool can act against the user's Google/Gemini API account and may incur quota or billing usage.
The skill requires a Google Gemini API key even though the registry metadata declares no primary credential or required env vars.
The script checks for API key in this order: 1. `--api-key` argument (use if user provided key in chat) 2. `GEMINI_API_KEY` environment variable
Use a limited Gemini API key via environment variable or a secrets mechanism where possible, and avoid pasting long-lived keys into chat.
Any prompt text and selected input image are shared with Google for processing.
For edits, the script sends the selected local image together with the prompt to Google's Gemini image API.
contents = [input_image, args.prompt] ... response = client.models.generate_content(
Do not use private, regulated, or confidential images or prompts unless you are comfortable with Google's API handling and retention terms.