ClawHub

Nano Banana 2

v1.0.0

Generate or edit images with the NanoPhoto.AI Nano Banana 2 API. Use when: (1) User wants text-to-image generation, (2) User wants image-to-image editing wit...

0· 133·0 current·0 all-time
byNanoPhoto.AI@nanophotohq
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
The name/description match the behavior: the script posts generation and status requests to https://nanophoto.ai endpoints and requires only NANOPHOTO_API_KEY as declared. No unrelated credentials or binaries are requested.
Instruction Scope
SKILL.md and the bundled script stay within image-generation/editing scope. The script may read the local OpenClaw config (~/.openclaw/openclaw.json) only to find the declared API key (documented). Note: the `--google-search` flag only forwards a boolean to the NanoPhoto API; the skill does not itself perform Google searches.
Install Mechanism
No install spec; the skill is instruction+script only. Nothing is downloaded or extracted at install time.
Credentials
Only NANOPHOTO_API_KEY is required and is used as the Authorization bearer token. The script's fallback to an OpenClaw config file is documented and scoped to this skill's env entry.
Persistence & Privilege
always:false and the skill does not request system-wide or other-skills configuration changes. It does not demand permanent elevated presence.
Assessment
This skill appears to do exactly what it says: send prompts and public image URLs to NanoPhoto's API using NANOPHOTO_API_KEY. Before installing: (1) store your API key in the platform's secure env setting rather than pasting it in chat, (2) only provide public images you are authorized to share (the API accepts public URLs only), and (3) be aware that generation inputs (prompts and image URLs) are sent to nanophoto.ai — do not send private or sensitive images or confidential prompts. If you want absolute assurance, you can inspect the included script (scripts/nano_banana_2.py) yourself; it only uses standard HTTP calls to the documented endpoints and the documented config path (~/.openclaw/openclaw.json) for credential fallback.

Like a lobster shell, security has layers — review code before you run it.

latestvk97bf1gejbemktgzeqd3qzd4an83fywb

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Runtime requirements

EnvNANOPHOTO_API_KEY
Primary envNANOPHOTO_API_KEY

Comments