Back to skill
Skillv1.0.2
VirusTotal security
magic-text2video · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 30, 2026, 5:57 AM
- Hash
- 9fd5a814b88008f42ed07c72a95e93d4fb610b05eab6e5ef8f8107fca59486a8
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: magic-text2video Version: 1.0.2 The skill bundle provides a client for a text-to-video service, but it contains a significant security vulnerability: the script `scripts/media_gen_client.py` explicitly disables SSL certificate verification (`ssl.CERT_NONE`). This allows for potential Man-in-the-Middle (MITM) attacks that could compromise the `MAGIC_API_KEY` or user data. While the behavior aligns with the stated purpose of interacting with the `https://open-test.magiclight.ai` endpoint, the inclusion of insecure network practices warrants a suspicious classification.
- External report
- View on VirusTotal