Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
doubao-image-auto
v2.0.0豆包 AI 创作自动化 - 通过 CDP 浏览器自动化实现无手动交互的图像生成与提取。工作流:1) 连接已打开的豆包页面 2) 导航到 AI 创作页 3) 输入 prompt 并自动生成 4) 提取生成的图片 URL 5) 下载保存到本地。
⭐ 0· 78·0 current·0 all-time
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Suspicious
medium confidencePurpose & Capability
Name/description promise CDP browser automation to generate and download images, which matches the CDP examples in SKILL.md. However the doc also claims '不需要浏览器,纯 API 调用' ('no browser required, pure API calls') and references external helper scripts (doubao_media_api.js, doubao_api.js) that are not included. The skill declares no config/credentials but hard-codes a Windows session file path (C:\Users\huang\.doubao_chat_session.json), which does not align with the declared requirements.
Instruction Scope
Runtime instructions tell the agent to connect to a browser via CDP (port 18800), navigate, type, click, evaluate page JS, extract image URLs and download files. They also instruct reuse of a local session cookie file and include example scripts that read and log site responses. The instructions reference reading a specific local cookie file and running unspecified node scripts — this expands scope to local filesystem and session data access beyond the stated purpose.
Install Mechanism
Skill is instruction-only (no install spec), which minimizes installer risk. However the examples rely on node (chrome-remote-interface) and PowerShell commands but do not declare dependencies or installation steps; that omission is an operational gap rather than a direct supply-chain risk, but it means users may run unreviewed scripts or install packages ad-hoc.
Credentials
Declared requirements: none. Actual instructions: read and reuse a session cookie file at a hard-coded user path, and refer to other local scripts and SSE/API flows. Asking to read local session cookies (which may contain authentication tokens) is a sensitive capability not declared in metadata and is disproportionate to a simple 'navigate-and-download' description.
Persistence & Privilege
Skill does not request always:true or other elevated skill-level privileges. However the SKILL.md implies storing and reusing session files and running login-refresh scripts over time — behavior that would create persistent local state if the user follows the instructions. The metadata does not declare or explain that persistence.
What to consider before installing
This skill's core idea — using Chrome DevTools Protocol to automate a website and download generated images — is plausible, but the implementation instructions contain inconsistencies and privacy risks. Before installing or running: 1) don't give the agent or any provided scripts access to your real cookie/session files; the SKILL.md explicitly references a local session file (C:\Users\huang\.doubao_chat_session.json) which could expose your authenticated session. 2) Ask the publisher for the missing code: the README references doubao_media_api.js and other scripts that are not included; request full source and a clear install list (npm packages) so you can audit them. 3) Prefer running automation in an isolated environment (a disposable profile or VM) with remote debugging enabled only temporarily on a non-privileged browser profile. 4) Verify network endpoints used by any included scripts — ensure image downloads and SSE calls go to expected doubao/byteimg domains and not third-party endpoints. 5) If you cannot obtain source and justification for the hard-coded session-file behavior and the 'pure API' claim, treat the skill as untrusted and avoid running its scripts on machines with real accounts.Like a lobster shell, security has layers — review code before you run it.
latestvk97da6501h7kqeh80rfpzkkejh84bsg1
License
MIT-0
Free to use, modify, and redistribute. No attribution required.