Back to skill
Skillv1.0.0
ClawScan security
Free AI Clothes Changer – Change Clothes in Photos with Virtual Try-On AI Technology – CLI-powered · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignApr 11, 2026, 12:03 PM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill is internally consistent: it only needs the WeShop CLI and a WESHOP_API_KEY to call an external WeShop image‑transformation API, which matches the skill's stated purpose.
- Guidance
- This skill appears coherent, but before installing or using it: 1) Verify the weshop-cli package and maintainer on npm and the linked GitHub repo (check stars, recent commits, and code) rather than blindly running npm install -g; 2) Prefer installing or testing the CLI in a container/VM or using a local install scope to avoid global code execution; 3) Confirm the API hostname (openapi.weshop.ai) and read WeShop's API docs to understand how images are uploaded, stored, and retained; 4) Treat your WESHOP_API_KEY as sensitive: set it only in the environment, do not paste it into chat, limit its scope if possible, and rotate/revoke it if concerned; 5) Be aware of privacy/legal implications of uploading peoples' images (obtain consent); 6) If you want greater assurance, inspect the CLI source code or run network capture to confirm requests go only to the claimed endpoint.
Review Dimensions
- Purpose & Capability
- okName/description match the declared requirements: the skill instructs use of the weshop CLI and requires a WESHOP_API_KEY. No unrelated credentials, binaries, or config paths are requested.
- Instruction Scope
- okSKILL.md only directs the agent to run the weshop ai-clothes-changer command with two image files, to read WESHOP_API_KEY from the environment, and to obtain an API key if missing. It does not instruct reading unrelated files, system credentials, or sending data to unexpected endpoints.
- Install Mechanism
- noteThis is instruction-only (no install spec). The docs instruct the user to install an npm package (weshop-cli) from npm/GitHub. That is a common distribution method but global npm installs run arbitrary code and the skill does not bundle or pin a specific vetted release; verify the package source and consider installing in a sandbox or inspecting its repository before global installation.
- Credentials
- okOnly a single credential (WESHOP_API_KEY) is required and it directly maps to the external API the skill uses. No additional unrelated secrets or broad config paths are requested.
- Persistence & Privilege
- okThe skill is not always-enabled and does not request persistent system-wide privileges or modify other skill configurations. Autonomous invocation remains enabled by default, which is normal and not by itself a concern.