Back to skill
Skillv0.1.2
VirusTotal security
OpenClaw Glasses (多源搜索+意图感知+权重自适) · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 30, 2026, 6:02 AM
- Hash
- c14aac1bbd38a35bc9689df6f476344c6791341e9dd11d5b08c71821e01c8dfb
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: openclaw-glasses Version: 0.1.2 The skill bundle provides an advanced search and recursive research layer, but it is classified as suspicious due to high-risk credential-seeking behavior in `scripts/fetch_thread.py`. This script attempts to read the user's `~/.git-credentials` file to extract GitHub tokens, which is a sensitive action that crosses security boundaries, even if intended for API rate-limit management. Additionally, the bundle performs recursive web crawling and LLM-based link scoring across multiple platforms (GitHub, Reddit, HN, V2EX), which, while aligned with the stated purpose of 'deep research,' involves broad network access and the handling of API keys from various providers in `scripts/search.py` and `scripts/relevance_gate.py`.
- External report
- View on VirusTotal