v1.1.1

Nano Banana Pro Prompts

ReviewClawScan verdict for this skill. Analyzed May 1, 2026, 8:20 AM.

Analysis

The skill mostly matches its prompt-recommendation purpose, but its setup downloads mutable data from GitHub and trusts remote filenames when writing local files.

GuidanceBefore installing, review the setup script behavior and only run it if you are comfortable downloading a mutable prompt library from GitHub. Prefer a version that pins or verifies the downloaded references and validates filenames before writing them locally.

Findings (3)

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

Abnormal behavior control

Checks for instructions or behavior that redirect the agent, misuse tools, execute unexpected code, cascade across systems, exploit user trust, or continue outside the intended task.

Tool Misuse and Exploitation

SeverityInfoConfidenceHighStatusNote

SKILL.md

Run the setup script to download references:
```bash
node scripts/setup.js
```
... Search with grep or equivalent:
```
grep -i "keyword" references/category-name.json
```

The skill expects local command use for setup and searching. This is central to its purpose, but users should be aware that the agent may ask to run commands and should approve them deliberately.

User impactThe assistant may use local shell-style commands to prepare and search the prompt library.

RecommendationApprove the setup/search commands only when you intend to use the local prompt library, and avoid giving the agent permission to run unrelated commands.

Agentic Supply Chain Vulnerabilities

SeverityMediumConfidenceHighStatusConcern

scripts/setup.js

const manifestText = await fetchText(`${BASE_URL}/manifest.json`);
... categories = manifest.categories;
... const dest = join(refsDir, cat.file);
... writeFileSync(dest, text, 'utf8');

The setup script trusts a mutable remote GitHub manifest to supply filenames and writes downloaded content to those paths without validating that each filename is a safe basename or remains inside the references directory.

User impactIf the remote manifest is changed unexpectedly or compromised, running setup or sync could write unexpected files or install altered prompt data outside the intended scope.

RecommendationValidate manifest filenames, ensure resolved paths stay under the references directory, and prefer pinned releases or checksums for downloaded reference data.

Sensitive data protection

Checks for exposed credentials, poisoned memory or context, unclear communication boundaries, or sensitive data that could leave the user's control.

Memory and Context Poisoning

SeverityLowConfidenceHighStatusNote

README.md

Prompts are curated from viral posts by top AI artists on Twitter/X, automatically synced to this repository twice daily via GitHub Actions.

The prompt library is community-sourced and updated outside the packaged skill, so retrieved prompt text may enter the agent context and should be treated as data to quote or remix, not as instructions for the agent to follow.

User impactA prompt entry could contain confusing or instruction-like text that the assistant should not obey as system guidance.

RecommendationTreat downloaded prompts as untrusted content, and ask the assistant to quote or adapt them rather than follow any instructions embedded inside them.