ClawHub

Ai Product Description Generator From Image

v2.0.2

Analyze a public product image URL and generate descriptions in 4 styles using Grok Vision AI. Requires XAI_API_KEY env var. Use when creating e-commerce cop...

0· 34·0 current·0 all-time
by@loutai0307-prog
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
Capability signals
Requires sensitive credentials
These labels describe what authority the skill may exercise. They are separate from suspicious or malicious moderation verdicts.
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
Name/description ask for image-based product descriptions via Grok Vision and the skill only requires XAI_API_KEY and a public https image URL — both are appropriate and expected for this purpose. The included script calls api.x.ai and uses a vision model, which aligns with the stated capability.
Instruction Scope
SKILL.md and scripts/script.sh only instruct the agent to validate an https URL, require XAI_API_KEY, and call the Grok API with the image and prompt. The instructions do not read unrelated files, access other env vars, or send data to any endpoint other than api.x.ai.
Install Mechanism
There is no install spec and the script relies on python3 from the standard library. Nothing is downloaded or written to disk by an installer, reducing installation risk.
Credentials
The only required environment variable is XAI_API_KEY (Grok API key). That is proportionate and necessary to call the Grok Vision API; no unrelated credentials or secret paths are requested.
Persistence & Privilege
The skill does not request always:true, does not modify other skills or system configs, and does not persist credentials; autonomous invocation is allowed by platform default but is not combined with other concerns here.
Assessment
This skill appears coherent and uses only a Grok (api.x.ai) API key and a public https image URL. Before installing, confirm you trust the skill source (bytesagain.com / the GitHub repo) and understand that providing XAI_API_KEY allows the skill to make API calls that may incur usage/billing on your Grok account. Do not provide private or sensitive images via public URLs. Monitor API key usage, set appropriate quotas on your Grok account if available, and rotate the key if you stop using the skill or suspect misuse. If you need higher assurance, review the repository code yourself (scripts/script.sh and SKILL.md) — they are short and use only the Python standard library and a direct call to api.x.ai.

Like a lobster shell, security has layers — review code before you run it.

latestvk97fynd5vvdn3sbmswzwnx9nch852jx5

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Runtime requirements

EnvXAI_API_KEY

Comments