Back to skill
Skillv1.0.1
VirusTotal security
ziniao-assistant · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
ReviewApr 30, 2026, 6:37 AM
- Hash
- a7700bc78ea3767772d510011d234a50b87754394bb6c99e195411e5ed89a730
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: ziniao-assistant Version: 1.0.1 The skill provides extensive browser automation capabilities via a local bridge (defaulting to 127.0.0.1:9481), including executing JavaScript (execute_script) and downloading files (download_file). It also instructs the agent to read and write API keys to a configuration file in the user's home directory (~/.zclaw/config.json). While these actions are aligned with the stated purpose of controlling the Ziniao Browser and include safety constraints like tool allowlisting and 'Stop on Blocker' logic, the combination of filesystem modification and broad browser control constitutes a high-risk capability set.
- External report
- View on VirusTotal