canghe-image-gen

[Skill Scanner] Backtick command substitution detected This SKILL.md describes an image-generation CLI/agent that legitimately needs API keys and local files; its stated capabilities align with its purpose. No explicit malware or obfuscated payloads are present in the documentation. However, there are moderate supply-chain and data-exfiltration risks: example npx -y bun usage (download-and-run vector), ability to set arbitrary provider BASE_URLs (which can redirect credentials and images to attacker-controlled endpoints), and default routing to a third-party gateway (Canghe). The skill will send local reference images and prompt contents to remote services — users should be warned not to pass sensitive images or keys and to inspect runtime scripts before executing. Recommend reviewing scripts/main.ts and network implementations, avoid blindly running npx examples, and restrict BASE_URLs to trusted endpoints. LLM verification: The SKILL.md documents a legitimate-seeming image generation wrapper that requires provider API keys and reads local prompt/reference files. The documented behaviors are consistent with its purpose. However, there are multiple supply‑chain and credential‑forwarding risks: (1) instructing users to run via npx -y bun (download-and-execute) increases supply‑chain attack surface; (2) support for custom BASE_URLs and a default third‑party gateway (Canghe) enables easy credential and data forwarding t