Back to skill
Skillv1.0.0
ClawScan security
Image Studio — AI Image Prompt System · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignFeb 26, 2026, 10:08 AM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- This is an instruction-only prompt-generation skill whose requirements and runtime instructions align with its stated purpose and do not request credentials or install code.
- Guidance
- This skill appears internally consistent and low-risk because it is purely an instruction file for generating image prompts and asks for no credentials or installs. Before using outputs in production, review generated prompts/images for PII, trademarked or copyrighted characters, and platform policy compliance (copyright/AI content rules). If a future version requests API keys, downloads code, or instructs the agent to access files or external endpoints, treat it as suspicious and re-evaluate before installing or granting access.
Review Dimensions
- Purpose & Capability
- okThe name and description (AI image prompt generation for multiple platforms) match the SKILL.md content: prompt formulas, templates, and platform sizing specs. No unrelated binaries, env vars, or config paths are requested.
- Instruction Scope
- okSKILL.md contains only prompt templates, style guides, and platform specs. It does not instruct the agent to read local files, access environment variables, call external endpoints, or transmit data outside the normal agent flow.
- Install Mechanism
- okNo install spec or code files are present (instruction-only). Nothing is downloaded or written to disk by the skill itself, which minimizes install-time risk.
- Credentials
- okThe skill declares no required environment variables, credentials, or config paths. Its functionality (prompt generation) does not require secret access, so the lack of requested credentials is proportionate.
- Persistence & Privilege
- okalways is false and there is no special persistent configuration. The skill can be invoked by the model (platform default) but it does not request elevated privileges or system-wide changes.