Back to skill
Skillv1.0.1
VirusTotal security
seedance2-skill · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
ReviewMay 1, 2026, 4:24 AM
- Hash
- 9e08fc5bc75b7589772d912488774cebbf9421103f593da92ab540965ac98e39
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: seedance2-skill Version: 1.0.1 The `scripts/seedance.py` tool, designed to process user-provided media files, contains a local file disclosure vulnerability. It reads arbitrary local files (e.g., `~/.ssh/id_rsa`) if provided by the AI agent as input media, base64 encodes them, and sends them to the Volcengine Ark API. This allows an attacker to prompt the agent to exfiltrate sensitive local files. Additionally, the `ARK_API_KEY` is read from environment variables, which a compromised agent could be prompted to disclose. On macOS, the `os.system` call used to open downloaded files, while quoted, still presents a potential (though lower) remote code execution risk if the agent-controlled `download_dir` could be maliciously crafted.
- External report
- View on VirusTotal