Skillv1.0.0

ClawScan security

OpenRouter Image Generation · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

SuspiciousMar 12, 2026, 11:35 AM

Verdict: suspicious
Confidence: medium
Model: gpt-5-mini
Summary: The skill implements the described OpenRouter/Gemini image generation, but the package metadata omits the required OPENROUTER_API_KEY and the runtime will transmit prompts and any reference images to an external API (and writes a debug dump), so you should confirm the credential/billing and privacy implications before installing.
Guidance: What to check before installing: - You must provide an OPENROUTER_API_KEY (the skill will not work without it). The published registry metadata did not declare this — verify and set the environment variable only if you trust the skill and OpenRouter. - Any prompt text and any reference image you pass will be uploaded to https://openrouter.ai; do not send private/confidential images or proprietary artwork unless you accept that those assets go to the external service. - The script writes a debug file (output.debug.json) when no image is returned; that file can contain the full API response (prompts, parts of the result). Clean or secure those files if they contain sensitive data. - Confirm billing and rate-limit implications on your OpenRouter account (the SKILL.md lists model costs and may consume credits). - If you want stricter assurance, ask the skill author/owner to update the registry metadata to declare OPENROUTER_API_KEY as the primary credential and to document exactly what fields appear in the debug dump.

Review Dimensions

Purpose & Capability: noteThe SKILL.md and scripts/generate.py match the skill name/description: they call OpenRouter's /chat/completions to generate images (text-to-image and optional reference-image guidance). The required behavior (sending images/prompts to OpenRouter) is coherent with the stated purpose.
Instruction Scope: noteRuntime instructions are narrowly scoped to image generation: they read an optional reference image, base64-encode it, POST to OpenRouter, decode a base64 image from the response, save output, and write a .debug.json when no image is returned. This is expected, but it means user prompts and any provided reference images will be transmitted to openrouter.ai (privacy/billing concern). The debug JSON can contain the full API response and should be treated as potentially sensitive.
Install Mechanism: okNo install spec is provided (instruction-only with a bundled script). Nothing is downloaded or executed during install, which minimizes install-time risk.
Credentials: concernThe script and SKILL.md require OPENROUTER_API_KEY (or --api-key) to operate, which is proportionate to the capability. However the registry metadata in the provided manifest lists 'Required env vars: none' and 'Primary credential: none' — a clear metadata omission/incoherence. The skill will fail without an API key, so the manifest should declare OPENROUTER_API_KEY as a required credential.
Persistence & Privilege: okThe skill does not request persistent/always-on privileges, does not modify other skills or system-wide configs, and runs only when invoked. No elevated platform privileges are requested.