Skillv0.1.0

ClawScan security

Doubao Image Video Skill · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

BenignMar 1, 2026, 4:30 PM

Verdict: benign
Confidence: high
Model: gpt-5-mini
Summary: The skill's files, runtime instructions, and required credential (ARK_API_KEY) are consistent with a ByteDance/Volcengine ARK integration for text-to-image/video and task status — minor documentation/manifest inconsistencies exist but do not indicate malicious behavior.
Guidance: This package appears to be a straightforward Python client for Volcengine ARK and is coherent with its description. Before installing or running it: 1) Verify the ARK_API_KEY comes from your Volcengine console and avoid pasting keys into version-controlled files. 2) Inspect the included scripts yourself (they are small and readable) and confirm network calls go to the expected Volcengine endpoints (the code uses ark.cn-beijing.volces.com). 3) Don’t 'source' unfamiliar dotfiles (e.g., ~/.basic) suggested by the docs — that can load arbitrary commands/credentials. 4) Note the manifest’s minor inconsistencies (mentions npm, curl, openssl) — they look like copy/paste from a template and not required for running the Python scripts. 5) If you need to run in a sensitive environment, run the skill in an isolated environment/container and rotate the API key when appropriate.

Review Dimensions

Purpose & Capability: okThe name/description (Doubao / Volcengine ARK text-to-image, image-editing, text-to-video) match the code and docs: Python scripts call an ARK API endpoint, require ARK_API_KEY, and implement img/edit/vid/status actions. The functionality described (including watermark removal) is implemented in the included files.
Instruction Scope: okSKILL.md and the scripts instruct only to set ARK_API_KEY, install Python deps, and run the provided scripts. Runtime behavior is limited to calling the Volcengine ARK API endpoints, launching the local doubao_demo.py process, and returning parsed JSON. The docs do suggest sourcing a user file (~/.basic) as an optional convenience — avoid sourcing unknown files. There are network calls to the documented Volcengine endpoint, which is expected for this skill.
Install Mechanism: noteThis is instruction-only (no platform install spec), but the bundle includes Python code and a requirements.txt (requests, aiohttp, pydantic, pytimeparse) which is appropriate. The manifest (doubao-skill.json) also lists npm/cli/curl/openssl and an 'npm install doubao-skill' line — that is inconsistent with the Python-only implementation (likely harmless but sloppy). There are no obscure download URLs or archive extraction operations in the package.
Credentials: okThe only required secret is ARK_API_KEY (declared in docs and enforced by code). Optional environment variables mentioned (LOG_LEVEL, REQUEST_TIMEOUT) are reasonable. There are no unrelated credentials requested and the code does not attempt to read other system credentials or configuration paths.
Persistence & Privilege: okThe skill does not request always:true and does not modify other skills or system-wide settings. It runs as-needed and uses local subprocess execution; no elevated persistence or privileges are requested.