Skillv1.0.0

ClawScan security

Filtrix AI Image Generation · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

ReviewFeb 24, 2026, 8:21 AM

Verdict: Review
Confidence: medium
Model: gpt-5-mini
Summary: The skill generally does what it says (multi-provider image generation) but the package metadata omits required API keys and the code disables a provider safety checker — these mismatches and choices merit caution.
Guidance: This skill appears to implement multi-provider image generation as advertised, but there are two things to watch for before installing or using it: 1) Metadata mismatch: The registry metadata claims no required environment variables, but both SKILL.md and the bundled scripts require OPENAI_API_KEY, GOOGLE_API_KEY, and/or FAL_KEY. Treat the registry metadata as untrustworthy until the author updates it. Only set API keys for providers you intend to use, and avoid placing broad account credentials in shared/global environment variables. 2) Safety configuration: The code disables fal.ai's safety checker (enable_safety_checker: False). That can allow generation or acceptance of content that would otherwise be blocked. If you need strict content safety, ask the maintainer why this is disabled, or modify the script to enable the checker before use. Other practical advice: - Review the two Python scripts locally (they are included) and run them in an isolated environment (container/VM) if you are concerned about network interactions. - Provide only provider keys you trust and preferably scoped/limited API keys (project-limited) rather than full account keys. - If you require guarantees about metadata, request that the publisher correct the registry fields so required env vars are declared explicitly. If you want, I can (a) point to the exact lines that disable fal.ai safety in the scripts, (b) produce a small patch to re-enable the safety flag, or (c) extract the exact env-var usage so you can decide which keys to set.

Review Dimensions

Purpose & Capability: concernThe skill's stated purpose is image generation using OpenAI, Gemini, and fal.ai, which matches the code. However the registry metadata claims no required environment variables or primary credential, while both SKILL.md and the scripts clearly require OPENAI_API_KEY, GOOGLE_API_KEY, and/or FAL_KEY. That metadata omission is an incoherence that should be fixed before trusting the package metadata.
Instruction Scope: noteRuntime instructions are scoped to generating and editing images with the three providers and instruct users to set only the provider API keys. The scripts read local image files and send image bytes/prompts to provider endpoints, and fetch returned image URLs — all expected behavior. One notable deviation: the fal.ai edit/generation calls set 'enable_safety_checker': False in the payload, which disables fal.ai's safety filter; this is a behavioral choice that can increase risk of generating or accepting disallowed content and is not documented in SKILL.md.
Install Mechanism: okNo install spec (instruction-only with included Python scripts). No third-party packages are pulled; code uses only Python standard library network calls. This limits installation risk because nothing is downloaded/installed at install-time by the registry spec.
Credentials: concernThe env vars the scripts actually require (OPENAI_API_KEY, GOOGLE_API_KEY, FAL_KEY) are proportionate to the stated purpose. However the registry metadata listing 'Required env vars: none' is incorrect and misleading — that mismatch is a security/usability concern because users may not realize the skill needs those API keys. Also note the code sends those keys as Bearer/Key headers to remote provider endpoints (expected but sensitive).
Persistence & Privilege: okThe skill does not request always:true, does not modify other skills or system configs, and has no install-time persistence. It runs only when invoked and performs network calls as part of normal operation.