Back to skill
Skillv0.1.0
VirusTotal security
Wasm Spa Autofix React Imports · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 30, 2026, 4:27 AM
- Hash
- 03bf352171a40f9715b75f6ef25f3b8971a7f690f68a92e4d95935ac28845033
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: wasm-spa-autofix-react-imports Version: 0.1.0 The skill is designed to fix code by reading project files and generating patches. It is classified as 'suspicious' due to the inherent high-risk capabilities required for its function, specifically the instruction to 'read additional project files' (SKILL.md, behavior.steps.2) and the ability to generate patches that can effectively create new files or modify existing ones (SKILL.md, behavior.steps.4, 'Output format'). While these capabilities are plausibly needed for a code-fixing agent and are accompanied by guardrails, they represent broad permissions for file system interaction, which, without strict runtime sandboxing or further user prompt scrutiny, could be leveraged for unintended access or modification.
- External report
- View on VirusTotal