Back to skill
Skillv1.0.0
VirusTotal security
Word Reader · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 29, 2026, 3:39 AM
- Hash
- e93d0ff3bbc641e688a689395b335c43d82a7c7f4a1492d74b7ecb0bf7baeedd
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: word-reader Version: 1.0.0 The skill is classified as suspicious due to its installation process involving privileged commands and potentially risky Python package management. Specifically, the `SKILL.md` file explicitly instructs the agent to execute `sudo apt-get install antiword -y` for `.doc` file support, and the `install.sh` script also uses `sudo` for installing `pip` via system package managers (`apt`, `yum`) and `pip install python-docx --break-system-packages`. While these actions are for legitimate dependency installation, the use of `sudo` grants elevated privileges, and `--break-system-packages` can modify system-managed Python environments, representing risky capabilities without clear malicious intent.
- External report
- View on VirusTotal