Back to skill
Skillv1.0.0
VirusTotal security
文章风格克隆助手 · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 30, 2026, 5:37 AM
- Hash
- 08609fa05d362911b078f6ee6dd7e2324dc74498adfa41f0d2910a361e55f7b8
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: style-cloner Version: 1.0.0 The skill contains a vulnerability in `scripts/clone_style.py` where the `read_input` function automatically reads the contents of any valid file path provided in the input arguments. This allows for arbitrary local file disclosure if an attacker or a malicious prompt tricks the agent into passing sensitive system paths (e.g., configuration files or SSH keys) as 'reference articles,' which are then exfiltrated to an external LLM API (defaulting to `api.deepseek.com`). While this behavior appears to be a risky design choice for CLI convenience rather than intentional malware, it poses a significant security risk in an agentic environment.
- External report
- View on VirusTotal