Skillv1.0.0

VirusTotal security

门店销售业绩分析 · External malware reputation and Code Insight signals for this exact artifact hash.

ReviewMar 26, 2026, 10:51 AM

Hash: a2567a0b83784bd338401779c71d2f6b4de86033f3f864f3f893a641d3ce3125
Source: palm
Verdict: suspicious
Code Insight: Type: OpenClaw Skill Name: retail-sales-performance-analysis Version: 1.0.0 The skill contains a hardcoded absolute path to a specific local user directory (/Users/yangguangwei/.openclaw/workspace-front-door) in analyze.py to import the critical api_client dependency. While the retail sales analysis logic aligns with the documentation in SKILL.md, hardcoding local user paths is a significant security risk and packaging flaw that could lead to module shadowing or environment information leakage. No evidence of intentional malice, such as data exfiltration or unauthorized remote execution, was detected.
External report: View on VirusTotal