Skillv0.1.1

ClawScan security

🫧 Nano Banana Edit — Pro Pack on RunComfy · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

BenignApr 29, 2026, 12:05 PM

Verdict: benign
Confidence: high
Model: gpt-5-mini
Summary: The skill's requirements and runtime instructions are consistent with an image-editing helper that calls the RunComfy CLI; it only asks for the RunComfy CLI, a RunComfy token, and the RunComfy config path — nothing unrelated or disproportionate.
Guidance: This skill appears coherent, but before installing: 1) Confirm you trust the RunComfy npm package source and install the CLI from the official package (@runcomfy/cli). 2) Protect your RUNCOMFY_TOKEN (do not paste it into public repos); use a scoped/limited token if RunComfy supports that. 3) Note that input images must be publicly-fetchable HTTPS URLs — avoid exposing private images unless you host them securely. 4) The CLI writes outputs to a local directory; choose a safe absolute path and monitor storage/billing for large or batch edits. 5) If you plan to let an autonomous agent use this skill, be aware it can run edits using the token when triggered; restrict agent permissions or review invocation policies if that is a concern.

Purpose & Capability: okName/description match what the SKILL.md instructs: calling `runcomfy run google/nano-banana-2/edit` via the local RunComfy CLI. Required binary (runcomfy), required env (RUNCOMFY_TOKEN), and config path (~/.config/runcomfy) are expected for this integration.
Instruction Scope: okInstructions focus on building the correct input JSON and running the RunComfy CLI. They reference publicly-fetchable HTTPS image URLs and writing outputs to an output directory — both are appropriate for an image-editing skill. The SKILL.md does not instruct reading unrelated files or exfiltrating other environment variables.
Install Mechanism: okThis is an instruction-only skill with no install spec. The prereq notes an npm install for the RunComfy CLI (a reasonable, documented approach) but the skill itself does not perform arbitrary downloads or write code to disk.
Credentials: okOnly RUNCOMFY_TOKEN and the RunComfy config path are required. These map directly to authenticating and configuring the RunComfy CLI and are proportionate to the described functionality. No unrelated credentials or broad secrets are requested.
Persistence & Privilege: okalways is false and the skill does not request elevated or cross-skill configuration access. It can be invoked autonomously (platform default), which is expected for a callable skill.