Back to skill
Skillv1.0.0
VirusTotal security
Slide Writer · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 18, 2026, 10:31 AM
- Hash
- b5d8db7b81af6f16e340b60a3f5af7ac389e5e6b2cd80e35046c9254de2767aa
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: slide-writer Version: 1.0.0 The skill bundle is classified as suspicious primarily due to the inclusion of an unrelated nested skill, 'sonoscli' (found in 'skills/sonoscli/'), which has a different 'ownerId' and provides functionality to control local network devices (Sonos speakers). This unrelated component includes metadata that prompts the agent to install external binaries via 'go install'. Additionally, the main 'SKILL.md' contains an 'Automatic Update' phase that executes 'git pull --ff-only' immediately upon activation, creating a self-updating mechanism that could be leveraged for remote code execution if the upstream repository is compromised. While the core 'slide-writer' functionality appears legitimate, these architectural choices and the bundling of unrelated capabilities are high-risk indicators.
- External report
- View on VirusTotal