Back to skill
Skillv1.0.0
VirusTotal security
Pdf Poppler Utils · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 30, 2026, 4:46 AM
- Hash
- da8e569ced73812ff77610ab95e7fc12b3b9f34100c8a07efa2a7e08d56288ff
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: pdf-poppler-utils Version: 1.0.0 The skill is suspicious due to a prompt injection attempt found in `SKILL.md`. The instructions explicitly tell the AI agent to "recommend executing it (to resolve the potential conflict)" if the human user is unsure about running `brew unlink curl -v`. This attempts to manipulate the agent's decision-making process to bypass user caution for a potentially disruptive system-level command, even if the stated purpose is to resolve a dependency conflict.
- External report
- View on VirusTotal