Skillv1.0.2

VirusTotal security

ORF · External malware reputation and Code Insight signals for this exact artifact hash.

ReviewMay 1, 2026, 3:02 AM

Hash: e9f6d8bf602c5c8de3cad25d14dac0d014047fed1b1db5247535fa5f9f26c652
Source: palm
Verdict: suspicious
Code Insight: Type: OpenClaw Skill Name: orf Version: 1.0.2 The skill is classified as suspicious due to the `scripts/nano_banana_mood.py` file. This script attempts to load the `GEMINI_API_KEY` by directly reading the `~/.openclaw/openclaw.json` configuration file from the user's home directory. While this access is for the skill's stated purpose of image generation, the capability to read specific configuration files from a sensitive user directory is a high-risk behavior, even without clear evidence of malicious intent like exfiltration or reading arbitrary files.
External report: View on VirusTotal