Back to skill
Skillv0.1.1
ClawScan security
Ernie Image Art Name · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignApr 29, 2026, 2:08 AM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill does what it says — it calls Baidu ERNIE-Image to generate artistic name images and only needs an aistudio access token; implementation is straightforward and there are no hidden endpoints or unrelated credentials requested.
- Guidance
- This skill appears coherent and implements the described ERNIE-Image name-to-art functionality. Before installing, consider: 1) You must provide a Baidu/Aistudio Access Token (via --token, AISTUDIO_ACCESS_TOKEN env var, or saved config.json). 2) Using --set-token will store the token in plaintext in config.json under the skill directory—avoid saving long-lived or sensitive tokens there on shared systems. 3) If you prefer not to persist credentials, run with --token for one-off uses and do not use --set-token. 4) Confirm you are comfortable with files being written to the skill directory (output images and config.json). 5) The registry metadata omitted the expected env var (AISTUDIO_ACCESS_TOKEN); this is a documentation mismatch but not a functional issue. If you need higher assurance, review the included scripts locally before running and rotate the token if it is ever exposed.
Review Dimensions
- Purpose & Capability
- okName-to-art image generation using Baidu ERNIE-Image is exactly what the SKILL.md, README, and scripts implement: the Python script builds prompts, calls https://aistudio.baidu.com/llm/lmapi/v3/images/generations, and saves returned image data. The required capability (an API token) matches the described service.
- Instruction Scope
- noteRuntime instructions are limited to collecting the user's text, selecting a style, and running the included Python script. The skill reads/writes a local config.json in its own install directory and expects a token from --token, env var AISTUDIO_ACCESS_TOKEN, or config.json. It will store the token to disk if the user runs --set-token. There are no instructions to read other system files or send data to endpoints other than the documented Baidu API.
- Install Mechanism
- okNo install spec; the skill is instruction+script only. The script uses only Python standard library (urllib, json, base64, etc.). No downloads or third-party package installs are performed.
- Credentials
- noteOnly one credential (Baidu/Aistudio access token) is needed, which is proportional to the task. However, the registry metadata lists no required env vars while the SKILL.md and script expect AISTUDIO_ACCESS_TOKEN (minor metadata mismatch). Also note the script can persist the token unencrypted in config.json in the skill directory — a sensitive artifact that could be exposed if the machine or backups are shared.
- Persistence & Privilege
- okThe skill does not request always:true and does not attempt to modify other skills or system-wide settings. It writes only its own config.json under the skill directory and otherwise has no elevated privileges.