ClawHub

ComfyUI Client

v1.2.0

此技能应在用户需要通过 ComfyUI 生成图片或视频时使用。支持加载工作流、修改 prompt、提交任务、轮询结果并自动下载生成的图片和视频。需 ComfyUI 服务已启动。

1· 98·0 current·0 all-time
byJS@imjszhang
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
medium confidence
Purpose & Capability
Name/description match the delivered artifacts: a Node.js client script plus multiple ComfyUI workflow JSONs. The skill needs no cloud credentials or unrelated system access to perform the stated tasks.
Instruction Scope
SKILL.md instructs the agent to load/modify workflow JSON, upload images to ComfyUI, submit jobs to the ComfyUI API (defaulting to localhost:8188), poll status, and download results — all consistent with generating images/videos via ComfyUI. The doc lets users override the server URL; be aware that pointing --server to a remote host will send your prompts/images to that host.
Install Mechanism
No install spec is present (instruction-only style) which lowers install risk. The skill does include a runnable script (scripts/comfyUIClient.js); the workflows reference model files hosted on Hugging Face (expected for ComfyUI workflows). There are no arbitrary download/install steps declared by the skill itself.
Credentials
The skill declares no required environment variables, credentials, or config paths. The only potential sensitivity is user data (prompts, input images) which the script sends to the ComfyUI server; that is expected for the function but you should ensure the target server is trusted (default is local).
Persistence & Privilege
Skill does not request always:true or other elevated persistent privileges. It is user-invocable and can be run on demand. No evidence of modifying other skills or global agent settings in the manifest.
Assessment
This skill appears coherent: it bundles ComfyUI workflow JSON files and a Node.js client that talks to a ComfyUI server (default localhost). Before installing or running: 1) Inspect scripts/comfyUIClient.js to confirm there are no unexpected network endpoints or attempts to read unrelated files or environment variables. 2) Run only if you have a local ComfyUI instance or you trust any non-local --server you supply; prompts and input images are sent to that server. 3) Be aware workflows reference model weights hosted on Hugging Face — ComfyUI may download these when running the workflow. If you are not comfortable with that, review the workflow JSONs and run ComfyUI in an isolated environment. If you want a deeper check, paste the contents of scripts/comfyUIClient.js for review (I marked medium confidence because the runnable script file was present but not inspected here).

Like a lobster shell, security has layers — review code before you run it.

latestvk97fw0t27w8aps3rzj3gawaqe9840mwd

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments