ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

使用Nano Banana Pro(Gemini 3 Pro Image)通过第三方中转API站清云EchoFlow API生成或编辑图像。支持图像生成、图像编辑和多图像合成(最多14张图像)。当用户请求生成图像、创建图像、编辑图像或组合图像时使用。关键词:图像生成、图片生成、生成图片、AI绘画、Nano Banana Pro、Gemini、Gemini 3 Pro Image。

v1.0.0

Generate, edit, or compose images (up to 14 inputs) via EchoFlow API using Nano Banana Pro (Gemini 3 Pro Image) with customizable resolution and model.

1· 49·0 current·0 all-time
by清云AI@zjx15296694073
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Suspicious
View report →
OpenClawOpenClaw
Suspicious
medium confidence
Purpose & Capability
The name/description match the included code and instructions (image generation/edit/composition via EchoFlow). However the registry metadata at the top said no required env/binaries, while SKILL.md declares the uv binary and ECHOFLOW_API_KEY — a mismatch between published metadata and the runtime instructions. The script also relies on Python libraries (httpx, pillow, openai) listed as comments in the script header but there is no install spec; that is reasonable for an instruction+script skill but should be documented consistently.
!
Instruction Scope
SKILL.md instructs running the bundled Python script which uploads images and prompts to the EchoFlow/OpenAI-compatible endpoint. The script allows overriding the API base URL (--api-base) and API key via arguments; combined with the script's behavior this means a user-supplied/different host could receive the API key and image data. The script also silently falls back to OPENAI_API_KEY and GEMINI_API_KEY environment variables if ECHOFLOW_API_KEY is not set, which is broader access than declared and could cause the skill to use unrelated high-privilege keys.
Install Mechanism
No install spec is provided (instruction-only install), which is low-risk in that nothing is written by the installer. The script lists Python dependencies in comments but they won't be automatically installed; users must have the Python environment and the 'uv' runner available. This is acceptable but the mismatch with registry metadata (which claimed no binaries/env required) should be fixed.
!
Credentials
SKILL.md declares ECHOFLOW_API_KEY as the primary credential, which is appropriate. The included script, however, will also read OPENAI_API_KEY and GEMINI_API_KEY as fallbacks (not declared in SKILL.md). That behaviour risks unintended use of unrelated credentials. Additionally, passing a custom --api-base causes the script to send the Authorization header (the API key) to any host specified, which could be used to exfiltrate keys or images if misconfigured or abused.
Persistence & Privilege
The skill does not request permanent/always-on presence and does not modify other skills or system-wide settings. It runs as an invoked script and does not embed itself into agent configuration by default.
What to consider before installing
This skill appears to implement image generation via EchoFlow as described, but there are a few things to watch before installing or using it: - Metadata mismatch: the registry summary said no required env/binaries, but SKILL.md requires the 'uv' runner and ECHOFLOW_API_KEY and the script needs Python packages (httpx, pillow). Expect to install Python deps and have 'uv' available. - Undeclared env fallbacks: the script will use OPENAI_API_KEY or GEMINI_API_KEY if ECHOFLOW_API_KEY is missing. If you have those keys set for other services, the skill might use them unexpectedly. Only set those env vars if you intend this skill to be able to use them. - api-base risk: the script accepts --api-base and will send the Authorization header (your API key) to the configured host. Do not point --api-base at untrusted hosts. Prefer keeping the default https://api.echoflow.cn/v1 unless you trust the alternative endpoint. - CLI key exposure: passing an API key on the command line (--api-key) can expose it in process listings or shell history. Prefer using the ECHOFLOW_API_KEY environment variable with appropriate scope and rotation. - Recommended precautions: inspect the script file locally (you already have it), run in an isolated environment, and consider creating a scoped/limited EchoFlow API key for use with this skill. Ask the maintainer to remove undocumented env fallbacks or to declare them explicitly in SKILL.md and to document dependency installation steps. If these issues are addressed (remove undocumented key fallbacks or declare them, and document dependencies), the skill would be much more coherent and lower risk.

Like a lobster shell, security has layers — review code before you run it.

latestvk97ane4rt5expvv17h0fymzdxx83swbh

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments