Skillv1.1.0

ClawScan security

Crazyrouter Image Gen · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

SuspiciousMar 10, 2026, 1:06 PM

Verdict: suspicious
Confidence: medium
Model: gpt-5-mini
Summary: The skill appears to implement an image-generation client for Crazyrouter and the runtime code matches the SKILL.md, but the registry metadata omits the required CRAZYROUTER_API_KEY and a few small inconsistencies exist — verify the source and env requirements before installing.
Guidance: This skill's code and SKILL.md implement a straightforward Crazyrouter client that needs CRAZYROUTER_API_KEY (and may use CRAZYROUTER_BASE_URL). Before installing: 1) Verify the skill source/owner and that you trust Crazyrouter; the registry metadata currently omits the required API key declaration — treat that as a red flag. 2) Only set CRAZYROUTER_BASE_URL to a trusted endpoint; otherwise the API key could be sent to a custom server. 3) Run the script in a sandbox or isolated environment first to confirm network destinations and behavior. 4) If you plan to install permanently, ask the maintainer to correct the registry metadata to explicitly declare CRAZYROUTER_API_KEY and document Node version requirements. If you cannot verify the publisher, avoid installing or supply a least-privilege, copy-only API key.

Purpose & Capability: okName/description (Crazyrouter image generation) matches the included script and instructions: the skill posts prompts to Crazyrouter and saves returned images. The models advertised are consistent with a multi-provider proxy service.
Instruction Scope: okInstructions are narrowly scoped: check CRAZYROUTER_API_KEY presence, run the included Node script which calls the Crazyrouter API and saves images locally. The instructions do not instruct reading unrelated files or exfiltrating additional environment data.
Install Mechanism: okNo install spec; this is instruction + embedded script only. Nothing is downloaded from arbitrary URLs and no archive extraction occurs.
Credentials: concernThe SKILL.md and script require CRAZYROUTER_API_KEY (and optionally CRAZYROUTER_BASE_URL) but the registry metadata lists no required env vars and no primary credential — an important inconsistency. Requesting an API key for the service itself is proportionate, but the metadata omission is misleading and should be corrected. Also note CRAZYROUTER_BASE_URL can override the endpoint and should only be set to trusted URLs.
Persistence & Privilege: okalways is false, the skill does not modify other skill configs or system-wide settings, and it does not request persistent elevated privileges.