ClawHub
Back to skill
v1.0.0

Nano Banana 2 Image Generator

BenignClawScan verdict for this skill. Analyzed May 1, 2026, 7:37 AM.

Analysis

This skill appears to do what it advertises—generate images through Media.io—but it needs a Media.io API key and sends prompts or reference image URLs to that service.

GuidanceInstall only if you trust the community-maintained skill and Media.io. Use a revocable API key, monitor credit usage, avoid sensitive prompts or private image URLs, and install the requests dependency from a trusted source.

Findings (3)

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

Abnormal behavior control

Checks for instructions or behavior that redirect the agent, misuse tools, execute unexpected code, cascade across systems, exploit user trust, or continue outside the intended task.

Agentic Supply Chain Vulnerabilities
SeverityInfoConfidenceHighStatusNote
SKILL.md
### 1) Install Dependency ... `pip install requests`

The setup instructions ask the user to install an unpinned Python dependency manually. This is common and purpose-aligned for the router's HTTP calls, but it is not represented as a formal install spec.

User impactUsers are responsible for installing the dependency safely in their environment.
RecommendationInstall dependencies from a trusted package index or pin a known-good requests version if your environment requires reproducible installs.
Permission boundary

Checks whether tool use, credentials, dependencies, identity, account access, or inter-agent boundaries are broader than the stated purpose.

Identity and Privilege Abuse
SeverityLowConfidenceHighStatusNote
SKILL.md
| `API_KEY` | **Yes** | Media.io OpenAPI key, sent as `X-API-KEY` header.

The skill requires a Media.io credential and uses it for authorized API calls. This is expected for the stated service, but the supplied registry metadata says no primary credential or env var is required, so users should notice the actual account authority.

User impactThe skill can make Media.io API requests under the user's account and may query credits or consume credits when generating images.
RecommendationUse a revocable Media.io API key, monitor credit usage, and ensure the agent asks before making requests that may spend account credits.
Sensitive data protection

Checks for exposed credentials, poisoned memory or context, unclear communication boundaries, or sensitive data that could leave the user's control.

Insecure Inter-Agent Communication
SeverityLowConfidenceHighStatusNote
SKILL.md
Endpoint: `POST https://openapi.media.io/generation/banana/i2i-banana-2` ... `prompt` ... Text description for image generation ... `image` ... Reference image URL

The skill documents that generation prompts and optional reference image URLs are sent to Media.io. This data flow is purpose-aligned and the router restricts endpoints to openapi.media.io, but it is still an external provider boundary.

User impactMedia.io may receive the prompts and image URLs provided for generation.
RecommendationAvoid submitting confidential prompts or private image URLs unless you are comfortable sharing them with Media.io and its API terms.