Back to skill
Skillv1.0.0
VirusTotal security
📺 Bilibili Skill · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
BenignApr 30, 2026, 6:10 AM
- Hash
- ff4b437b07d49c152a00e0a4345ee19666a19279294286fd1ed8a3bfe7020be2
- Source
- palm
- Verdict
- benign
- Code Insight
- Type: OpenClaw Skill Name: bilibili-skill Version: 1.0.0 The skill bundle provides a legitimate integration for interacting with Bilibili via a CLI wrapper and an AI agent. It handles sensitive authentication tokens (SESSDATA, bili_jct) by reading them from environment variables or a local configuration file (`bilibili-cookies.md`), which is standard for such tools. The documentation (`README.md`, `SKILL.md`) includes clear risk warnings regarding account security and API rate limits. While `SKILL.md` contains a `curl | sh` command within a code block, it is explicitly presented as a sample string for a social media post (promoting Ollama) rather than an instruction for the agent to execute on the host system. The logic in `bilibili-wrapper.sh` is straightforward and lacks indicators of malicious intent or data exfiltration.
- External report
- View on VirusTotal