Back to skill
Skillv1.0.1
VirusTotal security
Notebooklm Integration · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
ReviewApr 30, 2026, 6:19 AM
- Hash
- ef982c2d77e53e391a39edd1a52f5bb40165c109c8cf1305dd1d39bb03dcee81
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: notebooklm-integration Version: 1.0.1 The skill bundle (SKILL.md) provides instructions for the agent to integrate with Google NotebookLM using an unofficial library, including high-risk commands to 'git clone' and 'pip install' directly from a remote GitHub repository (https://github.com/teng-lin/notebooklm-py.git). This pattern introduces a significant supply chain risk and potential for remote code execution. Furthermore, the skill requests broad access to sensitive data via Google Drive and web research agents using undocumented APIs, which lacks the security guarantees of official integrations.
- External report
- View on VirusTotal