ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

Ai Image Prompts

v1.0.9

Recommend curated prompts from a 10,000+ real-world image generation prompt library. Works with ANY AI image model — Nano Banana Pro, Nano Banana 2, Seedream...

2· 511·1 current·1 all-time
byJared.Liu@dophinl
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
Name/description match the actual behavior: the skill provides a searchable prompt library and sample images. The included setup script and reference JSON files are consistent with downloading and serving that library. No unrelated credentials, binaries, or services are requested.
Instruction Scope
The SKILL.md is explicit about workflow: download references (node scripts/setup.js), read references/manifest.json, search category files, and always attach sample images (sourceMedia[0]). This stays within the skill's purpose. Note: mandating inclusion of sample images means the agent will fetch and attach remote image URLs from the downloaded JSON — this is expected but results in outgoing HTTP requests to third-party hosts referenced in the JSON.
Install Mechanism
No install spec; the only code is a small setup.js that fetches JSON from a raw GitHub URL (raw.githubusercontent.com). Using GitHub raw for reference files is reasonable and common; it writes files to the skill's own references/ directory. Risk is limited to trusting the upstream repo's content.
Credentials
No required environment variables or credentials are declared or used. package.json lists some dependencies (dotenv, qs-esm) that are not needed by the setup script — unnecessary but not harmful. The skill does not request unrelated secrets or config paths.
Persistence & Privilege
The skill runs on user invocation (always: false) and may be invoked autonomously by agents (platform default). It writes its own references/.last-updated stamp and reference files only; it does not modify other skills or global agent settings.
Assessment
This skill appears to do exactly what it says: it downloads public JSON 'references' from a GitHub repo and instructs the agent to attach sample images referenced in those files. Before installing, consider: (1) the skill will make outgoing HTTP requests to raw.githubusercontent.com to fetch JSON and will cause the agent to fetch remote image URLs from those JSON files — if you are privacy-sensitive, avoid pasting confidential content into prompt-remix flows; (2) trust in the upstream GitHub repo matters: if the repo were compromised it could change references, so inspect references/ after installation if you want assurance; (3) no credentials are requested, so there is no credential-exfiltration signal. If you have strict network or content policies, review the downloaded JSON and sample image hosts before enabling autonomous use.
!
scripts/setup.js:14
File read combined with network send (possible exfiltration).
About static analysis
These patterns were detected by automated regex scanning. They may be normal for skills that integrate with external APIs. Check the VirusTotal and OpenClaw results above for context-aware analysis.

Like a lobster shell, security has layers — review code before you run it.

latestvk97fmmd1gmsg0g1kwza7wgd6dh82t245

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments