Back to skill
Skillv2.1.0
VirusTotal security
Fanfic Writer · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 29, 2026, 3:45 AM
- Hash
- 3bfdf241b50243001ce76b1b2234a326748806b51b8cf70a9c730f67a2b2e703
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: fanfic-writer Version: 2.1.0 The skill exhibits extensive file system access and manipulation (e.g., creating, moving, deleting directories and files in `scripts/v2/atomic_io.py`, `scripts/chapter_manager.py`, `scripts/v2/workspace.py`), network communication via `urllib.request` to an external domain (`fanqienovel.com` in `scripts/tomato_fetch.py`), and process management capabilities (`os.kill` in `scripts/v2/resume_manager.py`). While these actions are plausibly necessary for a complex novel-writing agent, they represent high-risk capabilities if exploited. The AI agent's instructions (prompts) are a significant attack surface, and although the provided templates include explicit negative constraints against AI drift, the inherent nature of prompt injection poses a continuous risk. There is no evidence of intentional malicious behavior, but the broad permissions and powerful capabilities warrant a 'suspicious' classification.
- External report
- View on VirusTotal