Back to skill
Skillv1.0.0
VirusTotal security
pyautogui-skill · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 30, 2026, 5:56 AM
- Hash
- 99e75b541e48704848615863ea97bc7a18d5e389319a20f1adff141b37279dd9
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: pyautogui-skill Version: 1.0.0 The skill provides powerful desktop automation capabilities via PyAutoGUI, including keyboard/mouse control and screen capture, which are inherently high-risk behaviors for an AI agent. While the scripts (e.g., click_image.py, keyboard_shortcut.py, take_screenshot.py) are clearly aligned with the stated purpose and include safety fail-safes, they provide a direct mechanism for an agent to bypass UI-based security prompts or exfiltrate sensitive information via screenshots. No evidence of intentional malice, obfuscation, or data exfiltration logic was found in the code.
- External report
- View on VirusTotal