ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

Storybook Generator

v3.0.0

Use this skill any time the user wants to create visual stories, illustrated narratives, or storybook content. This includes: storybooks, comics, children's...

0· 376·1 current·1 all-time
byAnyGenIO@logictortoise
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Suspicious
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
Name/description: visual story generation. Declared requirements: anygen binary and ANYGEN_API_KEY. Install: @anygen/cli that provides anygen. These align with the stated purpose.
Instruction Scope
SKILL.md only instructs use of the AnyGen CLI, how to authenticate (API key or browser login), and to follow an anygen workflow. It does not request unrelated files, system paths, or unrelated credentials.
Install Mechanism
Install uses a Node package (@anygen/cli) which is an expected, traceable mechanism for providing the anygen CLI. This is moderate-risk relative to an instruction-only skill (because it writes a binary to disk), but is proportionate for a CLI integration.
Credentials
Only ONE credential (ANYGEN_API_KEY) is required and is the declared primaryEnv. No unrelated secrets, config paths, or additional tokens are requested.
Persistence & Privilege
Skill is not always-enabled and does not request elevated platform privileges. It does direct use of a third-party CLI which may store auth locally, but the skill itself does not request broader system persistence.
Assessment
This skill legitimately wraps the AnyGen CLI and needs your AnyGen API key (or a browser login) to operate. Before installing: confirm you trust AnyGen (www.anygen.io) because content and assets will be sent to that service; be aware the npm package will install a binary on your system; the CLI may store auth tokens locally after login. Only provide an API key with permissions you are comfortable granting, and review AnyGen's privacy/usage policy. If you don't trust the AnyGen publisher, do not install or share your API key.

Like a lobster shell, security has layers — review code before you run it.

latestvk977g7b59b5cncezm7xq0pnvfd83wyq6

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Runtime requirements

Binsanygen
EnvANYGEN_API_KEY
Primary envANYGEN_API_KEY

Install

Node
Bins: anygen
npm i -g @anygen/cli

Comments