Back to skill
Skillv0.1.2
VirusTotal security
Video Skill · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
BenignApr 30, 2026, 4:51 AM
- Hash
- 867359952bc476592b726a98791461a881a8b4a6ea82521a7695bef64ce592d2
- Source
- palm
- Verdict
- benign
- Code Insight
- Type: OpenClaw Skill Name: video-skill Version: 0.1.2 The OpenClaw AgentSkills bundle 'video-skill' appears benign. Its primary function is to process videos using AI models, involving file I/O, external API calls to configured endpoints, and local execution of `ffmpeg` for video/frame extraction. API keys are handled securely via environment variables. The `SKILL.md` and other documentation provide instructions for using the skill's CLI, without any evidence of prompt injection attempts designed to manipulate the AI agent into unauthorized actions. The use of `subprocess.run` with a list of arguments for `ffmpeg` commands in `src/video_skill_extractor/clips.py` and `src/video_skill_extractor/frames.py` mitigates common shell injection vulnerabilities, as arguments are passed directly to the executable rather than interpreted by a shell. No signs of data exfiltration, persistence, or other malicious behaviors were found.
- External report
- View on VirusTotal