Back to skill
Skillv1.0.0
VirusTotal security
摸鱼日报和百度热搜等图片生成,持续升级中 · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 29, 2026, 5:48 AM
- Hash
- dbb2ff0a380c1766597c98950ca75c48e16ea211dc60fb7173f419df7379906b
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: daily-poster Version: 1.0.0 The bundle provides poster rendering capabilities but contains risky behaviors, including network requests to third-party APIs (v2.xxapi.cn, 60s.viki.moe) to fetch dynamic content and the use of subprocess.run to execute external binaries (magick, inkscape, resvg) for image conversion in svg_image_converter.py. While these actions are consistent with the tool's stated purpose of generating and exporting posters, the reliance on external APIs and shell execution represents a potential attack surface. No evidence of intentional malice or data exfiltration was observed.
- External report
- View on VirusTotal