Skillv1.0.0

ClawScan security

grsai nano-banana 生图技能 · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

ReviewMar 4, 2026, 7:10 AM

Verdict: Review
Confidence: medium
Model: gpt-5-mini
Summary: The skill generally matches its stated purpose (generating images via the grsai nano-banana API) but contains several inconsistencies (API host mismatch, malformed primaryEnv name, and minor metadata/instruction mismatches) that should be clarified before trusting or installing it.
Guidance: This skill appears to do what it says (submit image-generation jobs and download results) but there are a few inconsistencies you should verify before installing or providing an API key: 1) Confirm the correct API host — SKILL.md and generate.py default to https://grsai.dakka.com.cn while the homepage is https://grsai.ai; verify whether grsai.dakka.com.cn is an official backend for grsai. 2) The declared primary environment variable name contains a space ("G RSAI_API_KEY"); that is almost certainly a typo — ask the author whether the intended name is something like GRSAI_API_KEY or G_RSAI_API_KEY. 3) decide how you will supply the API key (openclaw.json, environment variable, or CLI flag) and avoid storing keys in less secure locations. 4) Review the generate.py script yourself (it is included) and, if you will run it locally, run it in a controlled environment; the script only makes network requests to submit/poll/download images, but you should confirm the endpoints and TLS certs for authenticity. If you cannot confirm the host/variable issues, treat the skill as untrusted and do not provide production API keys.

Review Dimensions

Purpose & Capability: noteName/description (generate images with grsai nano-banana) align with the included script and instructions. The skill declares required binaries uv and curl — uv is used to run the Python script and curl is used in examples (not in the script). However metadata lists a primary credential named "G RSAI_API_KEY" (contains a space) which does not match common env var naming conventions and differs from other locations where the API key is described (openclaw.json or --api-key CLI flag). These naming mismatches are likely typos but are incoherent and should be corrected.
Instruction Scope: okSKILL.md and generate.py restrict actions to: submitting tasks to a grsai API, polling results, and downloading images to a local ./generated/ directory. There are no instructions to read unrelated local files, harvest other environment variables, or transmit arbitrary local data. The agent instructions do show curl examples and advise storing API key in openclaw.json or an environment variable.
Install Mechanism: okNo install spec is provided (instruction-only with a python script included). That is low-risk. The Python script depends on the 'requests' package; the script prints a helpful message if requests is missing. No remote download or archive extraction is performed by the skill itself.
Credentials: concernThe only credential needed is an API key for grsai, which is proportionate. However the declared primaryEnv name "G RSAI_API_KEY" contains a space and likely is a mistake; SKILL.md also shows using an openclaw.json entry and an environment variable export with that same malformed name. generate.py itself requires the API key via a CLI flag (--api-key). The inconsistency in how the key is provided (env var name vs openclaw.json vs CLI) should be clarified to avoid accidentally storing the key in an unexpected location. No other unrelated secrets are requested.
Persistence & Privilege: okThe skill does not request always:true and does not attempt to modify other skills or system settings. It only writes generated images to a local output directory specified by the user (default ./generated). Autonomous invocation is allowed (platform default) but not elevated here.