OpenEXR
PassAudited by VirusTotal on May 11, 2026.
Overview
Type: OpenClaw Skill Name: exr Version: 0.1.1 The 'exr' skill bundle is a legitimate utility for processing OpenEXR files, specifically designed for VFX and CGI workflows. The primary script, 'scripts/exr_extract.py', uses standard industry libraries (OpenEXR, numpy, Pillow) to perform color space conversions and Cryptomatte segmentation without any suspicious behaviors like network calls, shell execution, or unauthorized data access. The documentation and instructions in 'SKILL.md' are clear, align perfectly with the code's functionality, and contain no evidence of prompt injection or malicious intent.
Findings (0)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
Installing the skill may add third-party Python packages to the user's environment.
The skill relies on external Python packages; OpenEXR is pinned, but numpy is only range-bounded and Pillow is unpinned. This is normal for a Python image-processing skill but worth noticing before installation.
OpenEXR==3.2.4 numpy<2 Pillow
Install in a virtual environment or isolated project environment, and use trusted package indexes when installing dependencies.
A mistaken directory or `--force` option could create many files or overwrite existing generated PNG outputs.
The tool can batch-process local directories and can overwrite existing outputs when `--force` is used. This is disclosed and purpose-aligned, but users should confirm output paths before running it.
All subcommands accept a directory path to process every EXR in it... Existing outputs are skipped unless `--force` is specified.
Use an explicit output directory, review the target path, and only use `--force` when overwriting outputs is intended.