Back to skill
Skillv1.0.0
VirusTotal security
PDF 转 GetNotes · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 5, 2026, 3:41 PM
- Hash
- 883320ff1f918570bb8c3d3f02c48129c818683a7cbc68830ef820abdd405313
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: pdf-to-getnote Version: 1.0.0 The skill facilitates PDF-to-note conversion but exhibits high-risk behaviors, primarily by reading the global OpenClaw configuration file (~/.openclaw/openclaw.json) which contains credentials for all installed skills (scripts/run_pdf_to_getnote.py). It also uses subprocess.run to execute curl for data uploads and contains a hardcoded API key and Client ID within its documentation (references/full_sop.md). While these actions appear aligned with the stated purpose of interacting with the GetNote API (openapi.biji.com), the broad file access and execution patterns are risky.
- External report
- View on VirusTotal