Back to skill
Skillv1.1.3
VirusTotal security
Notes (Local, Apple, Notion, Obsidian & more) · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
ReviewMay 1, 2026, 3:41 AM
- Hash
- 8360d09fcf9c7245868083af438a1663c2075eb04b51d7f624054836eb47f51a
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: notes Version: 1.1.3 The skill bundle is well-documented and explicitly outlines a secure design, including instructions for the agent to seek user consent for external platform use and credential access. However, its core functionality relies heavily on executing shell commands (`touch`, `grep`, `memo`, `grizzly`, `clinote`, `obsidian-cli`, `curl`) with arguments derived from user input, as demonstrated in `local.md`, `apple-notes.md`, `bear.md`, `evernote.md`, `notion.md`, and `obsidian.md`. If the OpenClaw agent does not rigorously sanitize user-controlled input before constructing and executing these commands, it introduces significant shell injection vulnerabilities, which could lead to arbitrary code execution. While there is no evidence of intentional malicious behavior (e.g., unauthorized data exfiltration, backdoors, or prompt injection to bypass security), the pervasive use of shell commands with user input makes the skill suspicious due to the high risk of unintentional RCE vulnerabilities.
- External report
- View on VirusTotal