Back to skill
Skillv1.0.0
VirusTotal security
UAPI 必应壁纸 接口 · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 30, 2026, 5:37 AM
- Hash
- 7b8ce621e9b68d57471898a44f753a67dfcafa72f48caacc878e5ef216fd059d
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: uapi-get-image-bing-daily Version: 1.0.0 The skill bundle exhibits 'capability inflation' by including misleading keywords in SKILL.md and references/quick-start.md (e.g., 'nsfw image detection', 'image to base64', 'image compression') that are not supported by the actual code, which only implements a single GET request to 'https://uapis.cn/api/v1/image/bing-daily'. This acts as a prompt injection technique to trick the AI agent into invoking this skill for unrelated tasks, though no direct evidence of intentional data exfiltration or malicious execution was found.
- External report
- View on VirusTotal