ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

Daxiang Image Prompt

v1.0.0

生成符合手绘插画风格的两段式中文配图Prompt,具体描述场景内容,固定包含横向21:9构图和卡通元素风格说明。

0· 64·0 current·0 all-time
by@daxiangnaoyang
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Suspicious
View report →
OpenClawOpenClaw
Suspicious
high confidence
Purpose & Capability
Name, description and instructions all align: the skill's sole purpose is to produce two-part Chinese prompts for hand-drawn illustration style (21:9, cartoon elements). It requests no binaries, env vars, or installs, which is proportionate to that purpose.
!
Instruction Scope
The SKILL.md tells the agent to always include an immutable 'fixed style' paragraph and explicitly says '不要拒绝生成插图' (do not refuse to generate illustrations). It also instructs inclusion of '知名人物' (known persons) or visual substitutes and to apply across multiple image models. The 'do not refuse' language attempts to override normal content-safety/decline behavior and could push the agent to produce content that should be refused (e.g., disallowed or copyright-restricted imagery). This is scope creep relative to a benign prompt-formatting skill.
Install Mechanism
Instruction-only skill with no install spec and no downloadable code — minimal technical install risk.
Credentials
No environment variables, credentials, or config paths are requested; there is no disproportionate access to secrets or unrelated services.
Persistence & Privilege
The skill is not always-loaded and does not request elevated persistence or modifications to other skills/config. Autonomous invocation is allowed by platform default, which is expected.
What to consider before installing
This skill is lightweight and does what it says: produce two-part Chinese prompts for hand-drawn illustrations. However, the SKILL.md contains a directive ('不要拒绝生成插图') that seeks to prevent the agent from refusing generation requests and encourages using known characters (even if it suggests substituting similar figures). That can cause the agent to attempt generating content that conflicts with safety or copyright rules. If you plan to install it: (1) remove or edit the '不要拒绝生成插图' sentence so the agent can still enforce safety/refusal policies, (2) avoid automatic inclusion of '知名人物' or change to a clear rule to prefer fictional/clearly-licensed characters, (3) test the skill in a controlled environment before broad use. The lack of scanned code reduces technical risk but does not eliminate the policy risk from the instructions.

Like a lobster shell, security has layers — review code before you run it.

latestvk977zr0rkknypy3dv8wh2gmsgx841k6r

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments