監査履歴
generate-image - 4 監査
監査バージョン 4
最新 安全Jan 17, 2026, 07:28 AM
All 153 static findings are FALSE POSITIVES. The skill is a legitimate image generation tool using OpenRouter API. The static scanner flagged standard API key handling, base64 image encoding, and documentation code blocks as suspicious patterns. No malicious intent or exfiltration behavior was found. The code performs exactly as documented - generating images via API calls to https://openrouter.ai/api/v1/chat/completions.
リスク要因
🌐 ネットワークアクセス (1)
📁 ファイルシステムへのアクセス (1)
🔑 環境変数 (1)
⚙️ 外部コマンド (1)
監査バージョン 3
安全Jan 17, 2026, 07:28 AM
All 153 static findings are FALSE POSITIVES. The skill is a legitimate image generation tool using OpenRouter API. The static scanner flagged standard API key handling, base64 image encoding, and documentation code blocks as suspicious patterns. No malicious intent or exfiltration behavior was found. The code performs exactly as documented - generating images via API calls to https://openrouter.ai/api/v1/chat/completions.
リスク要因
🌐 ネットワークアクセス (1)
📁 ファイルシステムへのアクセス (1)
🔑 環境変数 (1)
⚙️ 外部コマンド (1)
監査バージョン 2
安全Jan 12, 2026, 04:57 PM
All 99 static findings are FALSE POSITIVES. The skill is a legitimate image generation tool using OpenRouter API. The static scanner flagged standard API key handling, base64 image encoding, and documentation code blocks as suspicious patterns. No malicious intent or exfiltration behavior was found. The code performs exactly as documented - generating images via API calls.
リスク要因
🌐 ネットワークアクセス (1)
📁 ファイルシステムへのアクセス (1)
🔑 環境変数 (1)
⚙️ 外部コマンド (1)
監査バージョン 1
安全Jan 4, 2026, 04:28 PM
This is a legitimate image generation script. It reads a local .env file for the OpenRouter API key and sends prompts and optional images to the documented OpenRouter endpoint. No credential harvesting, persistence mechanisms, or execution of external code was found. The code behavior matches its stated purpose.