Back to skill
Skillv0.1.0
VirusTotal security
Doc Ocr Skills · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 29, 2026, 5:43 AM
- Hash
- b14673e412a056c5d8081d04403c361ea860d7e35fdee6a6a280a0a35f2da0c0
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: doc-ocr-skills Version: 0.1.0 The skill bundle's installation script (scripts/install.sh) downloads and executes a pre-compiled binary from an external GitHub repository (github.com/scottkiss/doc-ocr), which is a high-risk behavior as the binary's source code is not included in the bundle for verification. Additionally, the documentation (SKILL.md and README.md) instructs users to store sensitive Gemini API keys in a plaintext configuration file at ~/.ocr/config. While these are common patterns for legitimate CLI tools, the reliance on opaque remote binaries and plaintext secret storage meets the threshold for a suspicious classification.
- External report
- View on VirusTotal