opengis-skills
PassAudited by VirusTotal on May 13, 2026.
Overview
Type: OpenClaw Skill Name: opengis-skills Version: 1.0.0 The bundle is a comprehensive documentation and API reference library for 56 open-source and commercial projects in the GIS, CAD, and .NET ecosystems, such as GDAL, FreeCAD, and SqlSugar. It is designed to provide AI coding assistants with accurate domain knowledge through structured Markdown files. The content consists of standard installation instructions, code snippets, and architectural overviews aligned with the stated purpose. No malicious code, data exfiltration attempts, or prompt injections were found. Security warnings included in files like ai/openclaw/SKILL.md correctly identify the operational risks of the tools being documented rather than introducing new threats.
Findings (0)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
If a user or agent runs this command, it can modify the target server by executing whatever the remote install script contains.
The documentation includes a visible one-line remote install script. It is a manual setup example for the documented mail platform, not code automatically run by the skill, but it would execute remote code if copied.
curl -sSL https://www.billionmail.com/install.sh | bash
Only run such setup commands on intended test or server environments after inspecting the script or using a pinned, trusted release path.
If followed blindly, an agent could run local scripts or GIS processing jobs that read or write user data.
The QGIS command reference documents running Processing models or Python scripts. This is expected for a QGIS automation skill, but arbitrary script execution should remain user-approved and scoped.
qgis_process run /path/to/my_script.py -- INPUT=data.shp OUTPUT=result.shp
Approve the exact input files, output paths, plugins, and scripts before allowing an agent to run qgis_process commands.
If a real token is supplied, an agent could perform actions allowed by that token, such as sending email through the configured service.
The documentation includes placeholder API-token usage for a mail-sending API. This is purpose-aligned integration guidance and there is no evidence the skill collects or stores tokens.
-H 'Authorization: Bearer <API_TOKEN>'
Use least-privilege tokens, avoid pasting secrets unless necessary, and require explicit approval before actions that send email or change account/server state.
An agent using these examples could help create or trigger email campaigns if given access to a real server and token.
The BillionMail skill documents bulk/transactional email sending and API calls. This matches the described mail-platform purpose, but public communications are high-impact if automated without review.
"批量营销发送" ... "curl -X POST https://your-server/api/v1/mail/send"
Require user confirmation for recipient lists, message content, sending limits, and compliance settings before allowing any mail-sending action.