ClawHub

Vaporwave Art Generator

v1.0.0

AI vaporwave art generator — create synthwave, retrowave, and aesthetic vaporwave images with neon grids, 80s retro colors, palm trees, and lo-fi vibes. Perf...

0· 86·0 current·0 all-time
by@omactiengartelle
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
Name/description promise (vaporwave image generation) matches the included code and README. The script only calls the Neta API (api.talesofai.com) and requires a Neta token passed via CLI — this is proportional and expected.
Instruction Scope
SKILL.md instructs running the bundled Node script with a --token flag and optional flags (--size, --ref). The runtime JS only reads CLI args, constructs JSON requests, posts to the Neta endpoints, and polls for results — it does not read unrelated files, environment variables, or contact other domains.
Install Mechanism
There is no install spec (instruction-only), and included files are plain JS/README/package.json. No external downloads, unpacking from arbitrary URLs, or package installs are performed by the skill itself.
Credentials
The skill does not require environment variables or other credentials beyond the Neta token provided on the command line. Note: passing secrets via CLI flags can expose them in process listings or shell history; using a safer mechanism (e.g., reading from stdin or an environment variable handled securely) would reduce that risk.
Persistence & Privilege
Skill does not request persistent/always-on presence, does not modify system or other skills' configs, and has no special privileges. Autonomous invocation remains enabled by platform default but is not combined with other risky behaviors here.
Assessment
This skill appears to do what it says: it posts your prompt to Neta's image API and prints a returned image URL. Before installing, ensure the Neta token you use is from the official site (neta.art/open) and consider not passing the token directly on the command line (it can show up in ps or shell history). Review the included vaporwaveartgenerator.js (provided) if you want to confirm network endpoints (api.talesofai.com) and behavior. If you install via an external registry or 'npx skills add', only proceed if you trust that source.

Like a lobster shell, security has layers — review code before you run it.

latestvk97b5nq9tg6rff72zfwyg6psk183tmw3

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments