by 安全扫描
OpenClaw
可疑
high confidenceThe skill mostly does what it claims (generate images for markdown via a Node script), but there are several incoherences and persistence behaviors that don't match the stated zero‑config promise and that warrant caution before installing.
评估建议
What to consider before installing:
- The core code (scripts/generate.mjs) is small and implements the advertised behavior: it tries Pollinations (unauthenticated) and falls back to HuggingFace if an HF token is available.
- However, the registry metadata declaring HF_TOKEN as required is inconsistent with the SKILL.md's zero‑config promise — don't assume you must supply a token to use the skill.
- The runtime instructions tell the agent to edit the skill's SKILL.md to store an HTTP proxy and to...详细分析 ▾
⚠ 用途与能力
The SKILL.md repeatedly promotes a zero‑config flow using the unauthenticated Pollinations endpoint, yet the registry metadata marks HF_TOKEN as a required environment variable. Requesting HF_TOKEN as 'required' is disproportionate given the primary flow does not need it; the included script only uses HF_TOKEN as a fallback or from a config file.
⚠ 指令范围
Instructions correctly restrict generation to the provided markdown and running the bundled Node script, but they also tell the agent to modify the skill's SKILL.md frontmatter to persist an HTTP proxy and to automatically reuse that proxy in subsequent runs. That instructs the agent to edit the skill bundle on disk and to silently apply stored settings later, which broadens scope beyond simple image generation.
✓ 安装机制
There is no install spec and only a small Node script is included. The skill requires the 'node' binary but does not download code from external URLs or perform any extract/install steps — this is low risk from an installation perspective.
⚠ 凭证需求
The skill's registry metadata lists HF_TOKEN as required, but the SKILL.md and script treat HF_TOKEN as optional/fallback. The script will also read a config file under the user's HOME (~/.config/snap-illustrator/config.json). Asking for HF_TOKEN up front (or marking it required) is disproportionate to the stated zero‑config behavior and increases credential exposure risk if users provide tokens without understanding where they will be used or stored.
⚠ 持久化与权限
The skill does not set always:true, but the instructions explicitly ask the agent to persist a user‑provided HTTP proxy by editing SKILL.md frontmatter so the proxy is reused automatically in future runs. Persisting settings by modifying the skill files (rather than asking the user each time or using a clearly scoped config store) is a privilege escalation in practice and should be treated cautiously.
⚠ scripts/generate.mjs:79
Environment variable access combined with network send.
⚠ scripts/generate.mjs:83
File read combined with network send (possible exfiltration).
安全有层次,运行前请审查代码。
运行时依赖
无特殊依赖
版本
latestv1.0.52026/3/22
- Added a full troubleshooting section covering unauthenticated service failures, network problems (especially in Mainland China), and proxy configuration. - Provided step-by-step guidance and user prompts in Chinese for common connectivity and token issues. - Documented how to record and reuse supplied HTTP proxy settings via the metadata section. - Clarified workflow and error-handling order for a smoother illustration workflow in more restrictive or variable network environments.
● 无害
安装命令
点击复制官方npx clawhub@latest install snap-illustrator
镜像加速npx clawhub@latest install snap-illustrator --registry https://cn.longxiaskill.com 镜像可用
本土化适配说明
Snap Illustrator — Snap 插画师 安装说明: 安装命令:npx clawhub@latest install snap-illustrator