Back to skill
Skillv1.0.0
VirusTotal security
教案内容写入PPT备注 · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 30, 2026, 5:49 AM
- Hash
- 8c5f541094e35ce333785cfab56739111d48f737db935c08679af8041078689f
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: ppt-lecture-notes Version: 1.0.0 The skill bundle automates updating PowerPoint notes from Word documents but utilizes risky capabilities, specifically the use of `subprocess.check_call` to auto-install the `python-pptx` library within `scripts/update_notes.py` and `scripts/update_ppt_notes.py`. Additionally, `SKILL.md` contains instructions for the agent to perform scheduled weekly execution, which functions as a persistence mechanism. While these behaviors are plausibly necessary for the stated purpose, the combination of shell-based package installation, broad file system access to hardcoded paths, and requested autonomous scheduling meets the threshold for a suspicious classification.
- External report
- View on VirusTotal