ClawHub

Doubao Maliang Image Gen

Security checks across malware telemetry and agentic risk

Overview

This skill generates Doubao/Seedream images through Volcano Engine ARK and saves the results locally as described.

Install only if you are comfortable sending image prompts to Volcano Engine ARK or another endpoint you configure. Use a limited API key, avoid secrets or sensitive personal/business data in prompts, verify any custom SEEDREAM_API_ENDPOINT, and periodically delete saved output folders if local retention matters.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (4)

Lp3

Medium
Category
MCP Least Privilege
Confidence
95% confidence
Finding
The skill requires environment access, network access, and local file writes, but those capabilities are not explicitly declared as permissions in a way that enables clear user review and consent. This creates a transparency and governance gap: users may invoke the skill without understanding that it will send prompts to a third-party service and persist generated content and metadata locally.

Vague Triggers

Medium
Confidence
89% confidence
Finding
The trigger set is broad and includes generic terms like '马良', '豆包', 'Doubao', 'Seedream', and 'Volcano Engine', which can cause accidental invocation in ordinary conversation. Unintended activation matters here because the skill can transmit user prompts to an external API and write outputs and metadata to disk without the user necessarily realizing the skill was engaged.

Missing User Warnings

Medium
Confidence
93% confidence
Finding
The skill describes the image-generation feature but does not clearly foreground that prompts and associated request metadata are sent to a third-party provider, Volcano Engine ARK. Users may share sensitive personal, business, or proprietary content in prompts under the assumption the interaction is local, resulting in unintentional data disclosure to an external service.

Missing User Warnings

Medium
Confidence
94% confidence
Finding
The skill highlights local backup and gallery behavior as a feature but does not clearly warn that generated images, prompts, and metadata are stored on disk. Local persistence increases the risk of sensitive prompt content or generated artifacts being exposed to other local users, backups, syncing tools, or later forensic discovery.

VirusTotal

63/63 vendors flagged this skill as clean.

View on VirusTotal