Back to skill
Skillv1.0.0
VirusTotal security
Star Office UI · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
ReviewApr 30, 2026, 5:00 AM
- Hash
- 731a709843d4a69c845ace7679e9b01a7373ba7504d405e00be23e9dc2cf44c7
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: star-office-ui Version: 1.0.0 The skill is classified as suspicious due to several vulnerabilities and risky capabilities, despite its stated benign purpose. Key indicators include: 1) Weak access control in `backend/app.py`'s `/join-agent` endpoint, which automatically approves new agents with a valid `joinKey` without explicit user consent, as confirmed in `docs/FEATURES_NEW_2026-03-01.md`. 2) A potential Local File Inclusion (LFI) risk in `backend/app.py`'s `/yesterday-memo` endpoint, which reads `.md` files from a `memory` directory located outside the skill's root (`os.path.dirname(ROOT_DIR)`), potentially exposing sensitive information if an attacker can control the directory's content. 3) Hardcoded `/root/` paths in several Python scripts (`backend/app.py`, `set_state.py`, `convert_to_webp.py`, `resize_map.py`), which assumes a specific deployment environment and user, leading to potential permission issues or unexpected behavior, as even acknowledged in `docs/OPEN_SOURCE_RELEASE_CHECKLIST.md`. 4) The `SKILL.md` instructs the agent to use `cloudflared` to expose a local service to the internet, which, while a legitimate deployment method, significantly increases the attack surface if the exposed service has vulnerabilities. There is no evidence of intentional malicious exfiltration or unauthorized remote control.
- External report
- View on VirusTotal