Back to skill
Skillv1.0.0
VirusTotal security
bailian-tts · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 30, 2026, 5:18 AM
- Hash
- d65c27e2d75e3ada1b4385c0f0b91e2431fc07c0c98b530c21172e9b59de2b21
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: bailian-tts Version: 1.0.0 The skill facilitates text-to-speech generation by instructing the agent to globally install a third-party npm package (@hackerpl/bailian-cli) and manage an Alibaba Cloud API key (BAILIAN_API_KEY). These actions, defined in SKILL.md and scripts/quick-test.sh, involve high-risk capabilities such as global software installation and credential handling. While these behaviors are aligned with the stated purpose of the skill, the automated installation of unverified external dependencies and the requirement for sensitive API keys meet the threshold for a suspicious classification.
- External report
- View on VirusTotal