Skillv1.0.0

ClawScan security

Doubao AI Image Generator · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

BenignMar 14, 2026, 3:13 AM

Verdict: benign
Confidence: medium
Model: gpt-5-mini
Summary: The skill's instructions, required binaries, and behavior match its stated purpose (browser-driven image generation), but it implicitly requires access to a logged-in browser profile and temporary file storage which the skill metadata does not explicitly enumerate — review browser/session access before enabling it.
Guidance: This skill appears to do what it says (drive Doubao in a browser and download generated images), but it relies on a logged-in browser profile and will read page DOM and save temporary files. Before enabling: (1) confirm you are comfortable granting the agent access to the OpenClaw browser profile/session (it can access cookies and other site data in that profile); (2) consider using a dedicated browser profile or isolated environment signed into only the Doubao account; (3) ensure temporary file paths used for downloads are safe and cleared if you handle sensitive data; (4) review agent invocation permissions so the skill cannot run autonomously without your consent. If you need stronger guarantees, request a skill that uses a documented API and explicit credentials rather than browser automation.

Review Dimensions

Purpose & Capability: okThe skill is an image-generation helper that uses browser automation to drive Doubao's web UI and download artifacts. Requiring curl and browser automation is coherent with that purpose.
Instruction Scope: noteSKILL.md explicitly instructs the agent to open Doubao in a browser profile, read DOM elements, evaluate JS in-page, capture screenshots, and extract image data via canvas/CDP. Those actions are necessary to automate a web-only image generator but grant the agent broad access to whatever is available in the specified browser profile/session (cookies, other sites' pages).
Install Mechanism: okInstruction-only skill with no install spec and a single low-risk dependency (curl). Nothing is written to disk by an installer; runtime steps may write temporary files for downloads.
Credentials: noteNo environment variables or external credentials are requested (the skill relies on an existing logged-in Doubao browser session). That is reasonable for a browser-driven approach, but it implicitly requires access to a browser profile/session which can expose other site credentials or personal data — this privilege is not declared in requires.env or config paths.
Persistence & Privilege: notealways is false and there is no install-time persistence. However, because the skill expects access to a browser profile and can be invoked autonomously (platform default), it could access session-bound resources when run. This is expected for an automation skill but increases blast radius if the agent is allowed to run skills without user oversight.