Back to skill
Skillv0.1.2
VirusTotal security
WeChat Mail Bridge (Windows/OpenClaw) · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
BenignApr 30, 2026, 5:36 AM
- Hash
- 9eab64c1cd0436dd057589ab2148b452c9e37b5aac14c85623db324ceecf1af2
- Source
- palm
- Verdict
- benign
- Code Insight
- Type: OpenClaw Skill Name: openclaw-wechat-mail-bridge-windows Version: 0.1.2 The bundle is a legitimate automation tool designed to bridge Windows WeChat Desktop with a mail query service (BHMailer). It uses UI automation (pywinauto/uiautomation) and an optional visual fallback (OCR/VLM via uiautomation_adapter.py) to monitor and interact with WeChat messages. The security implementation is notably robust for a skill bundle, featuring HMAC-SHA256 request signing, nonce-based replay protection, and Bearer token authentication (auth.ts). It also includes explicit privacy controls to redact emails and WeChat text in logs (config/schema.ts). No evidence of malicious intent, unauthorized data exfiltration, or prompt injection was found; all high-privilege operations are transparently documented and aligned with the stated purpose.
- External report
- View on VirusTotal