Back to skill
Skillv1.0.0
ClawScan security
Pixshop CLI — AI Image & Video Generation · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignMar 8, 2026, 8:01 AM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill's instructions, requirements, and scope match its stated purpose (a CLI for Pixshop.ai); nothing requested is disproportionate, but users should vet the npm package and understand local credential storage and data upload behavior.
- Guidance
- This skill appears coherent with its stated purpose, but before installing or using it: 1) Verify the npm package and its publisher (e.g., run `npm view pixshop` / check the package page and GitHub repo) because `npm install -g pixshop` will run third‑party code on your machine. 2) Be aware that login is via browser OAuth and credentials are stored in ~/.pixshop-config.json — review that file and protect it. 3) Uploaded images, prompts, and face-swap operations will be sent to Pixshop servers; avoid sending sensitive personal data or private images you don't want uploaded. 4) Do not set --api-url to untrusted endpoints (it could redirect where your images/credentials are sent). 5) Review Pixshop's privacy/terms and test with non-sensitive sample data first.
Review Dimensions
- Purpose & Capability
- okName/description describe a Pixshop CLI for image/video generation and editing, and the SKILL.md only references installing and using the pixshop CLI, image file paths, and Pixshop web endpoints — all consistent with the stated purpose.
- Instruction Scope
- noteInstructions are focused on installing the CLI (npm install -g pixshop), using commands, and authenticating via browser OAuth. They reference input image file paths and a local config (~/.pixshop-config.json) which is expected. The docs also expose an --api-url option that could point the CLI at arbitrary endpoints — useful for advanced use but potentially a vector for misconfiguration or data exfil if set to an attacker-controlled server.
- Install Mechanism
- noteThe skill bundle contains no install spec (instruction-only), but the runtime instructions tell users to run `npm install -g pixshop`. Installing an npm package is a normal way to get a CLI but does execute third-party code from the npm registry — users should validate the package and publisher before installing.
- Credentials
- okThe skill requests no environment variables or external credentials in the bundle. It does rely on browser OAuth and stores credentials in ~/.pixshop-config.json, which is reasonable for a CLI but means tokens/credentials live on the filesystem.
- Persistence & Privilege
- okThe skill is not always-enabled and does not request elevated system privileges. The only persistent artifact described is the CLI's config file in the user's home directory and any global npm-installed binary, which is standard for a CLI tool.