Back to skill
Skillv1.0.2
ClawScan security
product-replace · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignApr 27, 2026, 3:59 AM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill's instructions, required inputs, and behavior are consistent with its stated purpose of calling Flyelep's product-replacement HTTP API; it does not request unrelated system access or hidden installs.
- Guidance
- This skill appears coherent for calling Flyelep's product-replacement API, but before installing: 1) Only provide a Flyelep secretKey you obtained from their platform and avoid pasting it into skill files or public places; use the runtime credential entry the agent UI provides. 2) Confirm you trust Flyelep with the images you send (privacy, retention, and legal rights to edit/host those images). 3) Verify the HTTPS endpoint and your account's scopes/quotas to avoid unexpected charges. 4) If you allow the agent to invoke skills autonomously, be aware it could send image URLs you provide to the external API when triggered — restrict or monitor that behavior if images are sensitive.
Review Dimensions
- Purpose & Capability
- okName and description match the SKILL.md: it describes calling Flyelep's productReplace API to swap product foreground while preserving background. The skill does not request unrelated credentials, binaries, or config paths.
- Instruction Scope
- okSKILL.md limits actions to forming an HTTP POST to the specified Flyelep endpoint with a user-supplied secretKey in the header and a JSON body containing image URLs and prompts. It does not instruct reading local files, scanning system state, or exfiltrating unrelated data. The admonition to not access via browser is unusual but not harmful.
- Install Mechanism
- okNo install spec and no code files — instruction-only skill. Nothing is written to disk and no external packages are pulled.
- Credentials
- okThe skill requires a Flyelep API secret (provided at runtime via header) which is appropriate for this API-based task. It does not request unrelated environment variables or secrets. Note: secretKey is sensitive — the skill correctly warns not to bake it into the skill file.
- Persistence & Privilege
- okalways is false and the skill has no install or config changes. It does not request persistent system privileges or alteration of other skills' settings.