ClawHub

Nano Banana 2 Image Generation&Editing

Security checks across malware telemetry and agentic risk

Overview

This is a disclosed image-generation/editing skill that sends prompts and selected images to Atlas Cloud or Google as expected for its purpose.

Install only if you are comfortable sending prompts and selected images to Atlas Cloud or Google AI Studio. Use only the provider key you intend to use, avoid private or confidential images unless you accept third-party processing, and watch for API billing.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (2)

Vague Triggers

Medium
Confidence
78% confidence
Finding
The trigger description is overly broad and can cause this skill to activate for many generic visual-content requests, increasing the chance that user prompts and images are routed to third-party services unexpectedly. In a skill that performs external transmission, over-triggering raises privacy and data-handling risk because users may not realize their content will be sent off-platform.

External Transmission

Medium
Category
Data Exfiltration
Content
Include the source image as base64 inline_data alongside the text prompt:

```bash
curl -s -X POST \
  "https://generativelanguage.googleapis.com/v1beta/models/gemini-3.1-flash-image-preview:generateContent" \
  -H "x-goog-api-key: $GEMINI_API_KEY" \
  -H "Content-Type: application/json" \
Confidence
81% confidence
Finding
curl -s -X POST \ "https://generativelanguage.googleapis.com/v1beta/models/gemini-3.1-flash-image-preview:generateContent" \ -H "x-goog-api-key: $GEMINI_API_KEY" \ -H "Content-Type: application/

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal