Back to skill
Skillv3.2.0
VirusTotal security
Explore Xinjiang · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 9, 2026, 2:36 AM
- Hash
- f9d3a82fe623afe45187463748fb78dfbb170ec5755216f11aabf8473593b72f
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: explore-xinjiang Version: 3.2.0 The skill mandates the global installation of an external NPM package (@fly-ai/flyai-cli) and requires shell execution for environment verification and local logging to '.flyai-execution-log.json'. While these actions are aligned with the stated purpose of providing real-time travel data, the requirement for global software installation and persistent file writes constitutes a high-risk capability set. The instructions in SKILL.md and references/fallbacks.md use strong imperative language to force the agent to install software and execute shell commands before answering user queries.
- External report
- View on VirusTotal