ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

Ntriq Vision Product Analyzer Mcp

v1.0.0

Analyze product images: identify items, extract specs, compare features, generate descriptions.

0· 64·0 current·0 all-time
byntriq@ntriq-gh

Install

OpenClaw Prompt Flow

Install with OpenClaw

Best for remote or guided setup. Copy the exact prompt, then paste it into OpenClaw for ntriq-gh/ntriq-vision-product-analyzer-mcp.

Previewing Install & Setup.
Prompt PreviewInstall & Setup
Install the skill "Ntriq Vision Product Analyzer Mcp" (ntriq-gh/ntriq-vision-product-analyzer-mcp) from ClawHub.
Skill page: https://clawhub.ai/ntriq-gh/ntriq-vision-product-analyzer-mcp
Keep the work scoped to this skill only.
After install, inspect the skill metadata and help me finish setup.
Use only the metadata you can verify from ClawHub; do not invent missing requirements.
Ask before making any broader environment changes.

Command Line

CLI Commands

Use the direct CLI path if you want to install manually and keep every step visible.

OpenClaw CLI

Bare skill slug

openclaw skills install ntriq-vision-product-analyzer-mcp

ClawHub CLI

Package manager switcher

npx clawhub@latest install ntriq-vision-product-analyzer-mcp
Security Scan
Capability signals
CryptoCan make purchases
These labels describe what authority the skill may exercise. They are separate from suspicious or malicious moderation verdicts.
VirusTotalVirusTotal
Suspicious
View report →
OpenClawOpenClaw
Suspicious
high confidence
!
Purpose & Capability
The stated purpose (analyzing product images for e‑commerce) is plausible and aligns with the parameters, but the SKILL.md is internally inconsistent: it claims "Powered by local Qwen2.5‑VL — no external API required" while the Access section documents a remote endpoint (https://x402.ntriq.co.kr/vision-product) and micropayments. Those two claims cannot both be true as written.
!
Instruction Scope
The instructions include an explicit external API endpoint and curl examples that will upload product/competitor images to x402.ntriq.co.kr and require payment per call. The SKILL.md therefore directs external transmission of potentially sensitive images, but does not describe retention, privacy, or required payment/authentication flows. There are no instructions about local-only operation despite the earlier local-model claim.
Install Mechanism
No install spec or code files are present (instruction-only), so there is no on-disk install risk or third‑party package downloads.
!
Credentials
The skill declares no required environment variables or credentials, yet the remote access section references paid calls (USDC on Base) that will realistically require a wallet, API key, or other auth/billing mechanism. The absence of declared credentials or payment instructions is disproportionate and unexplained.
Persistence & Privilege
The skill is not marked always:true and does not request persistent system privileges or modify other skills. Autonomous invocation is allowed (platform default) but is not combined with other privilege escalations in the spec.
What to consider before installing
Do not assume processing is local: ask the skill author to clarify whether inference is performed locally or routed to the https://x402.ntriq.co.kr API. If the service is remote, get details about authentication, payment flow (how USDC/gas is provided), and the service's privacy/retention policy for uploaded images. If you require offline processing or cannot permit image upload, do not install or enable this skill until the author provides a local-only option or a clear, auditable remote usage model. Also verify TLS, endpoint authenticity, and whether any additional environment variables or wallet credentials will be required before giving the skill access to images.

Like a lobster shell, security has layers — review code before you run it.

latestvk97a5yzznqtpe3mh3mm63x086184x768
64downloads
0stars
1versions
Updated 1w ago
v1.0.0
MIT-0
ntriq@ntriq-gh
latest
Download

Vision Product Analyzer MCP

Analyze product images to identify items, extract technical specifications, compare features across variants, and generate optimized product descriptions for e-commerce. Powered by local Qwen2.5-VL — no external API required.

Parameters

ParameterTypeRequiredDescription
imagesarrayProduct image URLs or base64 (up to 10 per product)
tasksarrayidentify, specs, compare, description (default: all)
category_hintstringProduct category hint for better accuracy
competitor_imagesarrayCompetitor product images for comparison

Example Response

{
  "product_identified": "Mechanical Gaming Keyboard",
  "category": "Computer Peripherals",
  "specifications": {
    "switch_type": "Cherry MX Red (visible through keycaps)",
    "form_factor": "TKL (Tenkeyless)",
    "backlight": "RGB per-key",
    "estimated_dimensions": "360mm x 130mm",
    "materials": ["aluminum top plate", "PBT keycaps"]
  },
  "description": "Compact tenkeyless mechanical keyboard with Cherry MX Red switches and per-key RGB backlighting. Aluminum top plate construction. Ideal for gaming and space-constrained setups.",
  "seo_tags": ["mechanical keyboard", "tkl keyboard", "cherry mx red", "rgb keyboard", "gaming keyboard"]
}

Use Cases

  • E-commerce catalog automation from manufacturer photos
  • Product returns damage assessment
  • Competitive product feature comparison research

Access

# x402 endpoint — pay $0.05 USDC per call (Base mainnet)
POST https://x402.ntriq.co.kr/vision-product

# Service catalog
curl https://x402.ntriq.co.kr/services

x402 micropayments — USDC on Base, gasless EIP-3009

Comments

Loading comments...