Back to skill
Skillv2.7.0
VirusTotal security
风水大师助手2.7.0 · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
BenignApr 3, 2026, 1:47 AM
- Hash
- 09ac5fe55c12f62956fecf20e511941857d0f33a70403e0abe2c062f74578aa6
- Source
- palm
- Verdict
- benign
- Code Insight
- Type: OpenClaw Skill Name: tianji-fengshui Version: 2.7.0 The tianji-fengshui skill bundle is a comprehensive assistant for Feng Shui, palmistry, and Bazi analysis. It integrates with Doubao (Volcengine) and DeepSeek APIs for image and text processing. The code demonstrates security-conscious practices, such as implementing a path validation function (is_safe_file_path) in tianji_core_enhanced.py to prevent directory traversal and providing a security audit script (security_check_fixed.py) to help users identify hardcoded keys. While the skill reads the global OpenClaw configuration file (~/.openclaw/openclaw.json) to retrieve necessary API keys, this behavior is explicitly documented in SKILL.md and aligned with its stated purpose. No evidence of data exfiltration, unauthorized network calls, or malicious intent was found.
- External report
- View on VirusTotal