Back to skill
Skillv1.0.0
VirusTotal security
MiniMax DOCX Pro · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousMar 30, 2026, 7:01 AM
- Hash
- 02347472f5d9e6f5996f631f0edbb292ad57a7b2a8430397b8208b761f044ad4
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: minimax-docx-pro Version: 1.0.0 The skill bundle provides a sophisticated framework for Word document generation and validation. The primary security concern is the 'provision_dotnet' function in 'docx_engine.py', which automatically downloads and executes a remote shell script (Linux/macOS) or PowerShell script (Windows) from 'dot.net' to install the .NET SDK. While this is a standard deployment method for .NET, it represents a 'curl|bash' pattern that executes remote code. The rest of the bundle, including the OOXML validation logic in 'check/detectors.py' and the C# template engine in 'src/', appears benign and well-aligned with the stated purpose of enterprise-grade document composition.
- External report
- View on VirusTotal