Skillv1.0.0

ClawScan security

AI Dress Remover – Remove Dresses from Photos Online – CLI-powered · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

SuspiciousApr 19, 2026, 2:15 PM

Verdict: suspicious
Confidence: medium
Model: gpt-5-mini
Summary: The skill's declared requirements (WESHOP_API_KEY + weshop CLI) line up with its purpose, but important provenance and installation details are missing or unverified, which raises reasonable caution before installing or providing credentials.
Guidance: This skill's behavior (calling a weshop CLI and using a WESHOP_API_KEY) is coherent with its purpose, but the publisher/source is not verified in the registry. Before installing or supplying your API key: 1) verify the weshop-cli npm package and GitHub repo linked in SKILL.md (check owner, recent activity, stars, and published package maintainer). 2) Prefer to inspect the CLI's source code before `npm install -g`, or install it in an isolated environment/container. 3) Only provide an API key with least privilege and be cautious if it grants broad account access. 4) If you cannot confirm the package identity and trust the operator, do not install or share credentials. 5) Remember the skill performs sexually explicit image edits—ensure you comply with laws, platform policy, and ethical considerations. If you want higher assurance, ask the skill author/maintainer for a verifiable repository, release tarball, or an official homepage before proceeding.

Review Dimensions

Purpose & Capability: noteThe name/description (dress remover) match the runtime instructions (calling `weshop dress-remover-magic-eraser` and using a WESHOP_API_KEY). Asking for an API key and a CLI makes sense for this functionality. However the package/source provenance is unclear: registry metadata lists no homepage or source, while SKILL.md points to a GitHub repo and npm package; that mismatch reduces confidence in trustworthiness.
Instruction Scope: okSKILL.md stays on-task: it instructs using the weshop CLI, how to provide the API key (env var), default prompts, and example commands. It does not ask the agent to read unrelated files or other environment variables. The only out-of-band instruction is to install an external npm CLI if missing.
Install Mechanism: concernThe skill has no formal install spec in the registry and is instruction-only, but the runtime guidance tells the user/agent to run `npm install -g weshop-cli`. Installing a global npm package recommended by the skill (from an unverified publisher) can execute arbitrary code on the host. The SKILL.md claims a GitHub/npm presence but the registry metadata lacks a verified homepage/source, increasing risk.
Credentials: okThe only required credential is WESHOP_API_KEY, which is appropriate for a CLI that calls an external image-editing API. The skill explicitly warns not to pass the key on the command line and to read it from the env var, which is good. That said, giving any third-party API key to an unverified package carries risk.
Persistence & Privilege: okThe skill does not request always:true or other elevated persistence. It is user-invocable and does not declare system-level config changes.