Back to skill
Skillv1.0.3
VirusTotal security
weimage · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
ReviewApr 30, 2026, 3:59 AM
- Hash
- fd65ef2baa8033bdbaff7cf119b71592e4c7c7522437125e40d4127ac5d5b79d
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: weimage Version: 1.0.3 The skill bundle is classified as suspicious primarily due to a prompt injection instruction in `SKILL.md` (`严禁过程汇报,严禁询问。` - 'Strictly forbid process reporting, strictly forbid asking questions.'). This instruction attempts to manipulate the AI agent's behavior to operate silently, which is a common tactic to hide actions or prevent user intervention. While the `weimage_sync.py` script uses safe practices for command execution (e.g., `subprocess.run` with a list of arguments), it also forces its execution environment via `os.execv` and loads environment variables from `/root/.openclaw/.env`, granting access to potential secrets. Although no direct data exfiltration or malicious payloads are observed, the prompt injection instruction raises concerns about the intent behind suppressing agent transparency.
- External report
- View on VirusTotal