Back to skill
Skillv0.1.0
VirusTotal security
Listenhub · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 29, 2026, 4:46 AM
- Hash
- 5366010b9fc2badb4c5a37a7d715d6539e843999c0193769f162f250455e39e9
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: listenhub-2 Version: 0.1.0 The skill is classified as suspicious due to a critical prompt injection vulnerability in SKILL.md, which instructs the AI agent to `source ~/.zshrc`. This allows a malicious user to inject arbitrary commands into their shell configuration file, leading to remote code execution (RCE) on the agent's host. Additionally, the skill exposes potential Server-Side Request Forgery (SSRF) risks by passing user-provided URLs (`--source-url` in podcast scripts, `--reference-images` in image generation) directly to backend APIs, and the `generate-image.sh` script performs powerful actions like auto-installing dependencies via system package managers and modifying user shell RC files, which, while intended for legitimate setup, represent high-risk capabilities if abused.
- External report
- View on VirusTotal