Back to skill
Skillv1.0.0
VirusTotal security
md-to-office · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
ReviewMay 1, 2026, 3:12 AM
- Hash
- b695bf4e9de714c93df7e6c1bc8689933f5c6436ae2971b3cb38a3b5affec79d
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: pandic-office Version: 1.0.0 The skill is classified as suspicious due to its explicit documentation in `SKILL.md` demonstrating the ability to fetch content from arbitrary URLs using `pandoc -f html -t markdown https://www.fsf.org`. While `pandoc` is a legitimate tool, this example teaches the AI agent a broad network access capability that could be leveraged via prompt injection to fetch sensitive internal resources or external malicious content, extending beyond the stated purpose of converting local Markdown files.
- External report
- View on VirusTotal