Security checks across malware telemetry and agentic risk
The QR-code skill’s purpose is coherent, but its recommended setup asks users to run an unverified remote installer directly on their machine.
Review before installing. The QR-code functionality itself appears purpose-aligned, but do not run the recommended `curl | bash` command blindly. Prefer a pinned release or commit, download and inspect the installer first, verify checksums or signatures if available, and run it only in a contained environment if you cannot verify what it changes.
For the complete experience with **rounded dots, gradient colors, logo integration, and natural language support**, install from GitHub: ```bash curl -s https://raw.githubusercontent.com/zouyawen/openclaw-qrcode/main/install.sh | bash openclaw gateway restart ```
```bash # Full feature installation (recommended) curl -s https://raw.githubusercontent.com/zouyawen/openclaw-qrcode/main/install.sh | bash # Python dependencies (installed automatically by the script) # qrcode[pil], pillow, numpy, pyzbar
For the complete experience with **rounded dots, gradient colors, logo integration, and natural language support**, install from GitHub: ```bash curl -s https://raw.githubusercontent.com/zouyawen/openclaw-qrcode/main/install.sh | bash openclaw gateway restart ```
```bash # Full feature installation (recommended) curl -s https://raw.githubusercontent.com/zouyawen/openclaw-qrcode/main/install.sh | bash # Python dependencies (installed automatically by the script) # qrcode[pil], pillow, numpy, pyzbar
65/65 vendors flagged this skill as clean.
