Back to skill
Skillv1.0.0
VirusTotal security
好多素教需求单相关skill · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
ReviewMay 1, 2026, 4:46 AM
- Hash
- 5cd3142c455d159e01b3029dccf2472fff3f3188fd55cb84fe98ec1e12d691ba
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: hd-sales-clue Version: 1.0.0 The skill instructs the agent to handle user-provided sensitive login credentials (phone number, SMS verification code) for a CAS login flow, as detailed in `SKILL.md` and `references/login-flow.md`. While the instructions explicitly direct the agent to 'ask the user' and 'fill into the input box' for legitimate login, this capability is high-risk due to the sensitive nature of the data. Furthermore, the skill instructs the agent to 'analyze API data' (in `references/create-clue.md` and `references/virtual-list-handling.md`) to handle dynamic UI elements, implying the agent has the capability to inspect network requests. These capabilities, while seemingly used for the stated purpose of business process automation, represent significant power that could be misused if the agent or skill were compromised, or if future instructions were altered, thus classifying it as suspicious.
- External report
- View on VirusTotal