Nano Banana Pro Prompts Recommend
PassAudited by ClawScan on May 10, 2026.
Overview
This appears to be a benign prompt-recommendation skill, but it downloads and caches a mutable public prompt library from GitHub and uses local search commands.
Before installing, be aware that the skill needs Node-based setup to download public prompt-reference files from GitHub and stores them locally under the skill directory. This is normal for its purpose, but use it only if you trust the upstream prompt source and keep command execution limited to the documented setup and reference-search commands.
Findings (2)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
The prompts used by the skill can change when the upstream GitHub repository changes, so recommendations may depend on external data not bundled in the ClawHub package.
The core prompt data is fetched from a mutable GitHub main-branch URL and written locally. This is expected for a frequently updated prompt library, but the provided script does not show release pinning or checksum verification.
const BASE_URL = 'https://raw.githubusercontent.com/YouMind-OpenLab/nano-banana-pro-prompts-recommend-skill/main/references'; ... writeFileSync(dest, text, 'utf8');
Install only if you trust the YouMind-OpenLab GitHub source, and consider reviewing or pinning downloaded reference data if you need reproducible results.
If an agent constructed shell commands carelessly from user text, a malformed search query could cause command errors or unintended shell behavior.
The skill relies on local command execution for setup and file search. These commands are relevant to the skill's purpose, but search terms come from user needs and should be passed safely rather than treated as shell syntax.
Run the setup script to download references: node scripts/setup.js ... grep -i "keyword" references/category-name.json
Approve only the documented setup/search commands, keep them scoped to the skill directory, and ensure user-provided keywords are safely quoted or handled without shell interpolation.