Back to skill

Security audit

apiyi-gpt-image-2-gen(基于API易代理站)-官转版

Security checks across malware telemetry and agentic risk

Overview

This is a disclosed image generation/editing skill that sends prompts and optional images to APIYI and saves the returned image locally.

Install only if you are comfortable sending prompts, reference images, and API-authenticated requests to APIYI. Avoid uploading confidential or personal images unless you accept that third-party processing, and prefer APIYI_API_KEY over passing keys on the command line.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (5)

Missing User Warnings

Medium
Confidence
89% confidence
Finding
The skill documents uploading reference images and sending prompts to an external service, but it does not clearly warn that sensitive images, embedded metadata, or confidential prompt content may leave the local environment. Users could unknowingly transmit private data to a third-party provider and persist outputs on disk without understanding retention or privacy implications.

Missing User Warnings

Medium
Confidence
98% confidence
Finding
The skill explicitly recommends passing the API key via a command-line argument, which can expose the secret in shell history, terminal logs, process listings, job runners, and monitoring tools. This can lead to credential theft and unauthorized use of the API account, especially in shared or multi-user environments.

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The script transmits user-provided prompts and, in edit mode, local image files to a third-party service at api.apiyi.com, but it does not provide any explicit privacy notice, confirmation step, or data-handling warning before upload. In a skill that may be used on sensitive or personal images, this creates a real confidentiality risk because users may unknowingly send private data off-host to an external provider.

External Transmission

Medium
Category
Data Exfiltration
Content
});
    }

    const url = 'https://api.apiyi.com/v1/images/edits';

    process.stdout.write('🎨 图片生成已启动!\n');
    process.stdout.write(`⏱️ 预计时间: 约120-150秒,请耐心等待\n`);
Confidence
92% confidence
Finding
https://api.apiyi.com/

External Transmission

Medium
Category
Data Exfiltration
Content
if (args.outputFormat != null) payload.output_format = args.outputFormat;
    if (args.outputCompression != null) payload.output_compression = parseInt(args.outputCompression);

    const url = 'https://api.apiyi.com/v1/images/generations';

    process.stdout.write('🎨 图片生成已启动!\n');
    process.stdout.write(`⏱️ 预计时间: 约120-150秒,请耐心等待\n`);
Confidence
88% confidence
Finding
https://api.apiyi.com/

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.