Back to skill
Skillv1.0.2
VirusTotal security
next ai game · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
ReviewMar 28, 2026, 5:51 PM
- Hash
- b73ff8d2db10edb85ebd85223b09f230e1693b56476566a44280f99bb5dd700a
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: nextgame Version: 1.0.2 The skill defines a workflow for an AI agent to upload local files (HTML, JSON, PNG) to a third-party API at `https://www.idlab.top` for H5 game deployment. While the functionality is consistent with the stated purpose, the use of `curl` to transmit local workspace content to an external domain represents a significant data exfiltration risk. The instructions in `SKILL.md` specifically guide the agent to send local files to this endpoint, which could be exploited to leak sensitive information if the agent's file access is not strictly restricted.
- External report
- View on VirusTotal