Back to skill
Skillv1.0.0
VirusTotal security
feishu-doc-extended · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 30, 2026, 6:02 AM
- Hash
- 84a566fb65524fe4d8dbdfb5254d1d4458466f636be9cb4f0029b070bd1151af
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: feishu-doc-extended Version: 1.0.0 The skill bundle instructs the AI agent to modify the source code of OpenClaw's core Feishu plugin located in `/usr/local/lib/node_modules/`, which is a high-risk operation that bypasses standard plugin isolation. While the provided code snippets in `src/docx.ts` and `src/doc-schema.ts` appear to legitimately implement image retrieval via the official Feishu API (`open.feishu.cn`), the requirement to tamper with system-wide application files is a significant security concern and a potential vector for system-wide persistence or unauthorized code injection.
- External report
- View on VirusTotal