ClawHub

Zyt text to digital person

v0.3.0

Use Chanjing text-to-digital-person APIs to create AI portrait images, turn them into talking videos, optionally run LoRA training, poll async tasks, and exp...

0· 81·0 current·0 all-time
by@zuoyuting214
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
The name/description (text-to-digital-person, image->video, LoRA) matches the implemented API calls and scripts: POST/GET to open-api.chanjing.cc endpoints for photo, motion, and lora tasks. Declared env vars (config dir and auto-open flag) relate to local credential handling and login UI behavior.
Instruction Scope
SKILL.md and scripts only instruct the agent to call the documented Chanjing endpoints, poll for async task status, and download results only on explicit user request. The runtime instructions and scripts read/write a local credentials file (~/.chanjing/credentials.json) and may open a browser for login if configured; there are no instructions to read unrelated system files or send data to unexpected endpoints.
Install Mechanism
No install spec or external downloads are present; this is an instruction-only skill with bundled Python scripts. Nothing is fetched from third-party URLs or written to non-standard system locations by an installer.
Credentials
The skill requests CHANJING_CONFIG_DIR and CHANJING_AUTO_OPEN_LOGIN which are proportional to its local-config behavior. However, actual secret credentials (app_id/secret_key) are expected in a local file (~/.chanjing/credentials.json) rather than as declared environment variables or a primary credential field; the skill will persist access_token and expire_in into that file. Users should be aware secrets are stored on-disk and managed by the scripts.
Persistence & Privilege
always is false and the skill does not modify other skills or system-wide agent configuration. It does persist credentials and tokens under ~/.chanjing (or $CHANJING_CONFIG_DIR) and attempts to set restrictive file permissions when writing the config file.
Assessment
This skill appears to do what it claims: call Chanjing's API to generate images/videos and run LoRA tasks. Before installing, verify the API base (https://open-api.chanjing.cc) is the expected provider and that you trust it. Understand that credentials (app_id and secret_key) are stored in a local file (~/.chanjing/credentials.json) and the scripts will write an access_token and expiry there; if you prefer, keep credentials in a secure location and set CHANJING_CONFIG_DIR accordingly. CHANJING_AUTO_OPEN_LOGIN can make the skill open a browser login page automatically—keep it unset if you don't want that behavior. If you have concerns, inspect the two included Python scripts (_auth.py and _task_api.py) yourself; they perform the token management and HTTP calls and do not appear to contact any endpoints beyond the documented Chanjing API.

Like a lobster shell, security has layers — review code before you run it.

latestvk97e384c5xp9kzn08y2h9e1g3d83md42

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Runtime requirements

EnvCHANJING_CONFIG_DIR, CHANJING_AUTO_OPEN_LOGIN

Comments