Back to skill
Skillv1.2.1
VirusTotal security
Clips Machine · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
BenignMay 1, 2026, 3:35 AM
- Hash
- 8fcb3e80d63a85daabf0f633ad991ccac5772b8b52a6eaeae9643fae644f8401
- Source
- palm
- Verdict
- benign
- Code Insight
- Type: OpenClaw Skill Name: clips-machine Version: 1.2.1 The OpenClaw AgentSkill 'clips-machine' is classified as benign. The `clips_machine.py` script demonstrates good security practices by using `subprocess.run` with a list of arguments (avoiding `shell=True`), implementing URL validation against a whitelist of allowed domains to prevent SSRF, and using `tempfile.mkstemp` for secure temporary file creation. Additionally, the script sanitizes text before generating ASS subtitle files to mitigate injection risks. The `SKILL.md` documentation is clear, aligns with the script's functionality, and contains no evidence of prompt injection attempts against the OpenClaw agent or instructions for malicious behavior. All external dependencies (`ffmpeg`, `yt-dlp`, `whisper-cpp`) are legitimate tools for video processing.
- External report
- View on VirusTotal