Back to skill
Skillv1.0.0
VirusTotal security
Image Nuke - Nuclear Metadata Cleanser · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 30, 2026, 5:32 AM
- Hash
- 8437de52f801f9e8ea94b06b14edbc1c39830a786d0917f0a38690e1a1a9fcfd
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: image-nuke Version: 1.0.0 The skill includes a script `scripts/nuke_image.py` that uses `os.system` to automatically install Python dependencies (`Pillow` and `numpy`), which is a high-risk behavior in an automated agent environment as it executes shell commands and fetches external packages. While the tool's functionality for anti-forensics and bypassing reverse image search is clearly stated and the code performs the described pixel manipulations, the use of auto-installation via shell execution is a significant vulnerability. No evidence of intentional malice, data exfiltration, or persistence was found.
- External report
- View on VirusTotal