Back to skill
Skillv0.1.0
VirusTotal security
Ai Exam 授客AI智能考试 · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
ReviewMar 26, 2026, 9:01 AM
- Hash
- 1e59fdc6d0f8f790e3845dc021b873f4b69bfec02d9dda4514412ce5ef0767e7
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: soke-ai-exam-skill Version: 0.1.0 The skill implements an AI-driven exam system that requires high-risk capabilities, including reading local files and performing external network requests. Specifically, 'exam-service.js' uses 'fs.createReadStream' to upload documents to a remote server, and 'api-client.js' manages sensitive application credentials (APP_KEY, APP_SECRET) retrieved from environment variables. While these behaviors are aligned with the stated purpose of generating exams from documents, the broad file access and the transmission of credentials to a configurable BASE_URL constitute significant security risks that could be exploited for data exfiltration if the agent is misdirected.
- External report
- View on VirusTotal