Back to skill
Skillv1.0.0
VirusTotal security
Doc · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 29, 2026, 4:57 AM
- Hash
- ef0ef2a246f39fda9f049096df307d3b7d146f034f9f1790029830c3d7e39e0f
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: doc Version: 1.0.0 The skill is classified as suspicious primarily due to the explicit instruction in `SKILL.md` to use `sudo apt-get install -y libreoffice poppler-utils` for dependency installation. While the intent is to install legitimate tools, directly instructing an AI agent to execute commands with `sudo` introduces a significant privilege escalation vulnerability if the agent's execution environment is not adequately sandboxed or if the agent is compromised. This allows the skill to perform privileged operations without explicit user confirmation, which is a high-risk capability. The `scripts/render_docx.py` Python code, however, appears to handle subprocess calls safely by using lists of arguments, mitigating direct shell injection within the script itself.
- External report
- View on VirusTotal