Back to skill
Skillv1.0.1
VirusTotal security
错敏信息检测 · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
BenignApr 10, 2026, 6:51 AM
- Hash
- 4fcbdacdc1d8ecd814c50d21adbc972295e1f6da3d0e82e6781ca78600074600
- Source
- palm
- Verdict
- benign
- Code Insight
- Type: OpenClaw Skill Name: ucap-sensitive-check Version: 1.0.1 The skill is designed for sensitive information detection using the UCAP platform and demonstrates a high level of security awareness. It implements robust SSRF protections in `main.py`, including DNS resolution-based IP filtering, private/reserved network blocking, and secondary validation after URL redirects. While it utilizes `subprocess.run` to interface with an external `agent-browser` tool for dynamic content, it does so using safe argument lists and requires an explicit domain whitelist. The handling of the `userKey` via environment variables is standard for API integration, and no evidence of malicious intent, data exfiltration, or prompt injection was found.
- External report
- View on VirusTotal