Skillv1.0.6

ClawScan security

Dlazy Banana Pro · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

BenignApr 29, 2026, 2:34 AM

Verdict: benign
Confidence: high
Model: gpt-5-mini
Summary: The skill's requirements and instructions are consistent with a CLI wrapper for the dLazy image-generation service; it mainly needs an API key and the ability to run the dlazy CLI (via npx/npm), and there is no evidence of unrelated credential access or hidden endpoints.
Guidance: This skill appears to be a straightforward wrapper for the dLazy CLI. Before installing or using it: (1) verify the upstream project on GitHub and inspect @dlazy/cli@1.0.8 if you plan to npm install it; (2) be aware any local files you pass to the command will be uploaded to oss.dlazy.com (check privacy/data retention policies on dlazy.com); (3) provide only a dLazy API key with minimal scopes and be ready to rotate/revoke it if needed; (4) prefer running with npx for one-off use rather than a global install if you want to reduce persistent third-party code on your system; (5) note the SKILL.md documents a config file (~/.dlazy/config.json) even though the registry metadata omitted it—expect the CLI to store your API key there.

Review Dimensions

Purpose & Capability: noteThe skill claims to be a thin CLI client for dLazy and the declared requirements (npm/npx, optional DLAZY_API_KEY or dlazy auth) align with that purpose. Minor inconsistency: registry metadata lists no config paths or env vars, while the SKILL.md metadata documents a config location (~/.dlazy/config.json) and describes use of DLAZY_API_KEY; this is plausible but should be noted.
Instruction Scope: okRuntime instructions only tell the agent to run the dlazy banana-pro CLI, pass prompts/paths, and handle returned codes. The SKILL.md explicitly documents that local files you pass will be uploaded to oss.dlazy.com and that prompts/params go to api.dlazy.com — no instructions to read unrelated files or exfiltrate data outside the described endpoints.
Install Mechanism: noteThe registry contains no automated install spec (instruction-only skill), but SKILL.md metadata recommends either npx @dlazy/cli@1.0.8 or npm install -g @dlazy/cli@1.0.8. Using npx/npm to run a third-party package is expected for a CLI wrapper, but running/ installing arbitrary npm packages carries the usual supply-chain risk; review the GitHub repo before installing.
Credentials: okThe only sensitive credential referenced is the dLazy API key (optional via DLAZY_API_KEY or persisted in ~/.dlazy/config.json). This is proportionate to a cloud image-generation CLI. The skill does not request unrelated secrets or multiple external credentials.
Persistence & Privilege: okThe skill is not always-enabled and does not request system-wide privileges or to modify other skills. Agent autonomous invocation is allowed but that is the platform default and not by itself a concern here.