ClawHub

Gemini Image Simple

v1.1.0

Generate and edit images with Gemini API using pure Python stdlib. Zero dependencies - works on locked-down environments where pip/uv aren't available.

3· 6.8k·44 current·49 all-time
by@cluka-399
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
Skill name/description (generate/edit images with Gemini) match the included script and required environment variable. The script calls Google's generativelanguage API, uses only GEMINI_API_KEY, and reads/writes image files as expected.
Instruction Scope
SKILL.md instructs the agent to set GEMINI_API_KEY and run the provided Python script. The runtime instructions and script only read local image files (when editing), access the declared environment variable, and send/receive image data to the Google API endpoint. There is no code or instruction to read unrelated system files, other environment variables, or send data to unexpected endpoints.
Install Mechanism
No install spec is provided (instruction-only plus one script). This minimizes disk-writing/install risk. The script uses only Python stdlib; no external downloads or package installs are present.
Credentials
Only GEMINI_API_KEY is required, which is proportional to the skill's need to authenticate to the Gemini/Generative Language API. No unrelated credentials or config paths are requested.
Persistence & Privilege
The skill does not request always: true, does not modify other skills, and has no installation hooks or persistent privileges. It runs only when invoked.
Assessment
This skill appears to do what it claims, but exercise normal caution before installing code from an unknown source: (1) Review the script (already included) and confirm you trust the publisher; (2) Store your GEMINI_API_KEY securely — the script places the key in the request URL as a query parameter, which can be logged by intermediaries (consider using a more secure header-based auth if you control the environment); (3) Be aware model names are preview/beta and usage will consume your API quota and may be billed; (4) Avoid sending sensitive images to third-party APIs; (5) If you need stricter assurance, run the script in an isolated environment or container and/or replace the URL/auth handling with your organization’s approved client/secret management. Overall the package is coherent and low risk given the included source matches the documentation.

Like a lobster shell, security has layers — review code before you run it.

latestvk977whm8t26nh05rdkzrbksnts80ag2n

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Runtime requirements

🎨 Clawdis
EnvGEMINI_API_KEY

Comments