ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

Volcengine Image Studio

v0.1.1

Practical image generation workflow for Volcengine/ARK-compatible APIs. Use when users need poster creation, text-to-image, reference-image generation, local...

0· 75·0 current·0 all-time
byKoi@jinhuadeng
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Suspicious
medium confidence
!
Purpose & Capability
The SKILL.md and included script clearly implement a Volcengine/ARK-compatible image generation workflow (text-to-image, image-to-image, multi-image, auto-download). That purpose is consistent with the name/description. However the registry metadata claims 'Required env vars: none' while the SKILL.md and script require an API key, model, and endpoint (VOLCENGINE_API_KEY / ARK_API_KEY / OPENAI_API_KEY, VOLCENGINE_MODEL, VOLCENGINE_ENDPOINT). There are also minor manifest inconsistencies (ownerId in _meta.json differs from registry owner ID and slug/identifiers vary), which reduce trust in the package provenance.
Instruction Scope
The runtime instructions stay within image-generation scope: run the bundled Python script with a prompt and optional image refs. Important side effects are explicit: the script can convert local image files to base64 and send them to the remote API, it auto-downloads returned image URLs into a user directory (Desktop by default), and it may open Finder. These behaviors are coherent with the stated purpose but are privacy-impacting and side-effectful.
Install Mechanism
No install spec is provided and the included Python script uses only standard-library modules (urllib, base64, subprocess, etc.). There is no evidence of additional packages being fetched or arbitrary code downloaded at runtime, and no extract/download install steps in the manifest.
!
Credentials
The script requires sensitive credentials (API key) and endpoint/model configuration to function. Those env vars are reasonable for the stated purpose, but the skill registry metadata does not declare them (primaryEnv unset). The script also accepts aliases (OPENAI_API_KEY etc.), which could lead to unintentional use of unrelated credentials. The number of optional env vars (download dir, watermark flags, streaming, etc.) is reasonable, but the omission from metadata and accepting multiple credential names is a proportionality/visibility problem.
Persistence & Privilege
always:false (normal). The skill does write files to the user's filesystem (Downloads/Desktop or custom dir) and can open Finder—this is expected for a tool that auto-downloads results but is a notable side effect. The skill does not request elevated or cross-skill configuration privileges and does not install persistent background services.
What to consider before installing
This package appears to be a working image-generation script, but review these items before installing or running it: - Credentials: The script requires an API key, model, and endpoint (e.g., VOLCENGINE_API_KEY / VOLCENGINE_MODEL / VOLCENGINE_ENDPOINT). The registry metadata did not declare these — confirm you trust the skill and the endpoint before providing keys. Prefer using an isolated or ephemeral API key. - Local images are transmitted: When you pass local image paths the script base64-encodes them and sends them to the remote API. Do not use sensitive/private images unless you trust the target service. - Auto-downloads and filesystem writes: By default results are downloaded to your Desktop and the script may open Finder; set --download-dir to a safe location if you prefer. - Provenance inconsistencies: The manifest shows mismatched owner/slug identifiers; there is no homepage and the source is unknown. If you need higher assurance, ask the publisher for a canonical source or review the script locally before running. - Code review: The included script is short and uses only standard libraries; there is no evidence of remote install or obfuscated code. If you will run it, inspect generate_image.py yourself and consider running it in a controlled environment (container or VM) and avoid sharing production/unrelated credentials. If any of the above concerns worry you (especially transmitting local images or providing API keys), do not install or run the skill until you verify the endpoint and publisher.

Like a lobster shell, security has layers — review code before you run it.

latestvk97a7m97gbc4apynbwjzqbvp7n83xg84

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments