Back to skill
Skillv1.0.0
VirusTotal security
follow-nowcoder · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 19, 2026, 3:36 AM
- Hash
- 08cca8d3628365b2752cb210a6bdedc8fe7cc514cafffd8d765b69433bf44806
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: follow-nowcoder Version: 1.0.0 The skill bundle is designed to scrape and summarize interview experiences from NowCoder (nowcoder.com). It is classified as suspicious because `src/search.py` explicitly disables SSL certificate verification (using `ssl.CERT_NONE` and `verify=False`) and lowers the OpenSSL security level to 0. This is a significant security vulnerability that exposes the user to Man-in-the-Middle (MITM) attacks. While this appears to be a crude workaround for connection issues rather than intentional malice, the bypass of standard security protocols poses a high risk.
- External report
- View on VirusTotal