Skillv1.0.4

ClawScan security

青萍 AI 平台 · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

SuspiciousMar 16, 2026, 2:38 PM

Verdict: suspicious
Confidence: medium
Model: gpt-5-mini
Summary: The skill appears to implement an image-generation tool and its code is consistent with that purpose, but the package/registry metadata omits the required API credential information (QINGPING_API_KEY), an inconsistency that could cause surprise or misuse.
Guidance: This skill's code and instructions implement an AI image generator that needs an API key (QINGPING_API_KEY) and will POST to video.lusyoe.com and download images from img-cdn.lusyoe.cn into a local qingping-ai/ folder — that behaviour matches the description. However, the registry metadata that came with the skill incorrectly omits the required API credential and primary credential fields. Before installing or running it: (1) verify the publisher/repository and that video.lusyoe.com / auth.lusyoe.com / img-cdn.lusyoe.cn are legitimate and trustworthy; (2) do not paste your API key into public/shared environments — scope the key appropriately if possible; (3) prefer running the script in a sandbox or isolated environment the first time to confirm network activity; (4) ask the publisher to correct the registry metadata to explicitly declare QINGPING_API_KEY as a required credential so agents and users aren't surprised. If you cannot verify the service origin, avoid using secrets with this skill.

Review Dimensions

Purpose & Capability: concernThe SKILL.md and scripts explicitly require QINGPING_API_KEY for API calls to video.lusyoe.com, but the top-level registry metadata listed in the submission says 'Required env vars: none' and 'Primary credential: none'. That mismatch is an incoherence between declared requirements and actual runtime needs.
Instruction Scope: okThe runtime instructions and scripts stay within the stated purpose: they read QINGPING_API_KEY, POST to the documented img generation endpoint, poll status, and download images to a local qingping-ai/ directory. There are no instructions to read unrelated system files or exfiltrate arbitrary data.
Install Mechanism: okThis is an instruction-only skill with a small Python script that uses only the standard library (urllib). There is no install spec, no external downloads, and no archive extraction — low install risk.
Credentials: concernThe only environment secret the code uses is QINGPING_API_KEY which is proportionate for an API client. However, the registry metadata does not declare this required env/primary credential, which is misleading and could lead to accidental key exposure if users follow different provisioning instructions.
Persistence & Privilege: okThe skill does not request persistent platform privileges (always:false) and does not modify other skills or global agent settings. It only writes generated images to a local directory and prints instructions that suggest how users can add an env var to their shell files (user action).