每日热榜

OpenClaw Agent Skill Suspicious High-Entropy/Eval files: 11 The skill bundle is classified as benign. It provides daily hot news aggregation by connecting to a local API service (`http://localhost:6688`) and storing historical data within its designated workspace (`/root/.openclaw/workspace/skills/daily-hot-news/data`). All file system and network operations are consistent with the stated purpose of fetching, processing, and storing news. The `SKILL.md` and `README.md` contain instructions for users to deploy an *external* backend service and examples of agent interactions (e.g., setting up cron tasks), but these are user-facing instructions/examples and do not constitute direct malicious actions or prompt injection attempts by the skill's code itself. No evidence of data exfiltration, malicious execution, persistence, or obfuscation was found within the provided files.