Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
nano banana 2
v1.0.0Generate/edit images with Nano Banana 2 (Gemini 3.1 Flash Image). Use for image create/modify requests incl. edits. Supports text-to-image + image-to-image;...
⭐ 1· 118·0 current·0 all-time
by@gybin02
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Suspicious
medium confidencePurpose & Capability
The skill's stated purpose (image generation/editing via Gemini) matches the code and instructions: the script uses google.genai to call Gemini and Pillow to process images. However the registry metadata does not declare the actual runtime needs: the SKILL.md and script require the 'uv' runner and a Gemini API key, but required binaries/env vars are listed as none. Also SKILL.md uses a path (~/.codex/skills/nano-banana-pro/...) that does not exactly match the skill slug (nano-banana-2-pro), which could indicate sloppy packaging or a copy-paste error.
Instruction Scope
The SKILL.md and script limit activity to reading input images from user-specified paths, calling the Google GenAI client with provided API key, and writing output PNGs to the user's working directory. There are no instructions to read unrelated system files or to send data to unexpected external endpoints beyond the Gemini API. The script prints load/save messages and model text parts but does not attempt hidden exfiltration. Still, the instructions grant the script the ability to read any input image paths the user provides, which is expected for this purpose.
Install Mechanism
There is no install spec in the registry (instruction-only), but the script header and runtime import show real dependencies (google-genai, pillow) and the SKILL.md presumes the 'uv' command. The skill does not declare how those dependencies are installed or verified. Lack of an install mechanism plus commented dependency hints is disproportionate: either declare required binaries/env and provide an install, or keep it pure-instructions and make requirements explicit.
Credentials
The script expects an API key (CLI --api-key or GEMINI_API_KEY environment variable) and will fail without it, yet the registry lists no required env vars or primary credential. Requesting a service API key is reasonable for this functionality, but omitting that from metadata is an incoherence that affects user consent and credential management. Additionally, SKILL.md's pre-check mentions 'command -v uv' which means the 'uv' binary is required but not declared.
Persistence & Privilege
The skill does not request persistent/automatic inclusion (always: false) and does not modify other skills or global agent settings. It only writes output files where the user chooses. There are no elevated privileges or persistence indicators.
What to consider before installing
This skill appears to implement exactly what it claims (a Gemini-based image generator), but the package metadata is incomplete and inconsistent: it fails to declare that you must supply a GEMINI_API_KEY (or pass --api-key) and that the 'uv' runner plus Python deps (google-genai, pillow) are required. Before installing or running: 1) Confirm the skill's origin and trustworthiness (homepage/source unknown). 2) Only provide an API key with the correct, least-privilege scope for image generation; avoid reusing high-privilege account keys. 3) Ensure you run it in a safe directory (it will read any input image paths you pass and will create output files). 4) Consider installing dependencies from official sources and running the script in a sandbox if origin is untrusted. 5) Ask the publisher to update the registry metadata to declare required binaries and the GEMINI_API_KEY requirement and to fix the inconsistent path/slug to reduce ambiguity.Like a lobster shell, security has layers — review code before you run it.
latestvk97f5aqam1w11zna2204vvqqe983hynr
License
MIT-0
Free to use, modify, and redistribute. No attribution required.