ClawHub
Back to skill
v1.0.0

Gemini Image Proxy

BenignClawScan verdict for this skill. Analyzed May 1, 2026, 5:15 AM.

Analysis

The skill matches its stated image-generation purpose, but it requires an API key and sends prompts or input images to the configured proxy endpoint.

GuidanceBefore installing, make sure you trust the API endpoint in GOOGLE_PROXY_BASE_URL, use an appropriate API key, and install the openai package from a trusted source. Avoid using sensitive images or prompts unless you are comfortable sending them to that provider.

Findings (3)

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

Abnormal behavior control

Checks for instructions or behavior that redirect the agent, misuse tools, execute unexpected code, cascade across systems, exploit user trust, or continue outside the intended task.

Agentic Supply Chain Vulnerabilities
SeverityLowConfidenceHighStatusNote
SKILL.md
python3 -m pip install openai

The setup instructions require installing the OpenAI Python SDK without a pinned version. This is expected for the skill, but it relies on the package source and current package version.

User impactInstalling an unpinned package can change behavior over time if the package version changes.
RecommendationInstall from a trusted Python package source and consider pinning a known-good openai package version.
Permission boundary

Checks whether tool use, credentials, dependencies, identity, account access, or inter-agent boundaries are broader than the stated purpose.

Identity and Privilege Abuse
SeverityLowConfidenceHighStatusNote
scripts/generate.py
client = OpenAI(api_key=api_key, base_url=base_url)

The script uses a user-provided API key and base URL to access the image API. This is necessary for the stated purpose and the code does not show hardcoding or logging of the key.

User impactThe configured API key may authorize usage or billing on the selected image service.
RecommendationUse a limited-purpose API key where possible and verify that GOOGLE_PROXY_BASE_URL is the intended trusted endpoint.
Sensitive data protection

Checks for exposed credentials, poisoned memory or context, unclear communication boundaries, or sensitive data that could leave the user's control.

Insecure Inter-Agent Communication
SeverityLowConfidenceHighStatusNote
scripts/generate.py
response = client.images.edits(
                model=MODEL,
                prompt=prompt,
                image=image_file,

For edits, the script uploads the prompt and the selected input image to the configured API endpoint. This is purpose-aligned but creates an external data flow.

User impactPrivate prompts or images may be sent to the endpoint configured in GOOGLE_PROXY_BASE_URL.
RecommendationOnly use trusted API endpoints and avoid submitting sensitive images unless you are comfortable with that provider receiving them.