Back to skill
Skillv2.0.0
VirusTotal security
Arknights Operator Gacha · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
BenignApr 29, 2026, 4:29 AM
- Hash
- 787ff86273466fbad38999042a574385f4a1464c8e3b38338092836dfb2a5b35
- Source
- palm
- Verdict
- benign
- Code Insight
- Type: OpenClaw Skill Name: arknights-operator-gacha Version: 2.0.0 The OpenClaw AgentSkills bundle for 'arknights-operator-gacha' is classified as benign. The `gacha_worker.py` script, which handles all deterministic tasks, demonstrates robust security practices including strict input sanitization for agent names, explicit URL domain whitelisting for all web fetches and downloads (e.g., `arknights.fandom.com`, `prts.wiki`, `static.wikia.nocookie.net`), HTTPS enforcement, content-type validation, and file size limits for avatar downloads. All subprocess calls (e.g., `openclaw agents add`, `git commit`) use argument lists, preventing shell injection. The `SKILL.md` instructions for the LLM agent are clear, align with the stated purpose, and do not contain any malicious prompt injection attempts or instructions for unauthorized actions. Data access is confined to public wiki information and the agent's dedicated workspace, with no evidence of data exfiltration or persistence mechanisms.
- External report
- View on VirusTotal