Back to skill
Skillv1.0.2
VirusTotal security
Material Report · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 30, 2026, 4:40 AM
- Hash
- 7ced0d034b3896936bc7c6ad7638bf2ca55116efeb2a302ac9d5666510da737f
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: material-report Version: 1.0.2 The skill instructs the AI agent to execute the `ffmpeg` command for video frame extraction. While `ffmpeg` is necessary for the stated purpose of video analysis, the execution of external commands based on user-provided input (like video paths) without robust sanitization by the agent's runtime environment creates a significant shell injection vulnerability (potential Remote Code Execution). There is no clear evidence of intentional malicious behavior such as data exfiltration or backdoor installation within the provided instructions or templates.
- External report
- View on VirusTotal