Back to skill
Skillv0.1.2
VirusTotal security
Infocard Skills · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
ReviewMar 24, 2026, 12:01 AM
- Hash
- 95d452c38fc1daa102cfe09e217a38eb6dba7d947e7663691add6616d5d8719f
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: infocard-skills Version: 0.1.2 The skill bundle provides functionality to generate editorial HTML cards and render them as PNGs using a shell script (scripts/capture_card.sh) that invokes a headless Chrome/Chromium browser. While the behavior is aligned with the stated purpose, the use of shell execution and a browser with local file access (via file:// URLs) and network access (for Google Fonts) constitutes a high-risk capability in an agentic environment. No evidence of intentional malice, such as data exfiltration or backdoors, was found in the code or the design instructions (SKILL.md, editorial-card-prompt.md).
- External report
- View on VirusTotal