Back to skill
Skillv1.0.0
VirusTotal security
Content Repurposer · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
ReviewApr 30, 2026, 4:27 AM
- Hash
- ecea7111d06abe211deb3cdcc586ae26761b60e7ef5d94ed5eca53a8f357d927
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: oc-content-repurposer Version: 1.0.0 The `scripts/repurpose.py` file contains vulnerabilities that could be exploited via prompt injection against the AI agent. Specifically, the `file` command allows reading content from arbitrary local file paths (Local File Disclosure), and the `url` command fetches content from arbitrary URLs (Server-Side Request Forgery). While the script itself does not exfiltrate data or perform other malicious actions, these flaws could lead to unauthorized access or disclosure of sensitive information if the agent is tricked into providing malicious inputs.
- External report
- View on VirusTotal