Back to skill
Skillv1.0.1
VirusTotal security
zxyskill · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 30, 2026, 4:37 AM
- Hash
- 7a7a91c587c0f142e0f99ec1890439fb725cd3b948e11cb40765e734e8e4652a
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: lessons-learned Version: 1.0.1 The skill bundle is designed for agent self-improvement and memory, incorporating defensive mechanisms like forbidden word checks. However, it is classified as 'suspicious' due to two key vulnerabilities: 1) The `SKILL.md` explicitly states that `memory/lessons/SYSTEM_PROMPT.md` is an '注入模板' (injection template), indicating its content is used to modify the agent's system prompt. This creates a significant prompt injection vulnerability if an attacker can manipulate this file. 2) The skill instructs the agent to '先读取内容' (first read content) for user-provided file paths and '先获取内容' (first fetch content) for URLs, which, while part of its intended functionality, opens up potential vectors for arbitrary file reading (data exfiltration) or Server-Side Request Forgery (SSRF) if the agent is tricked into processing malicious inputs.
- External report
- View on VirusTotal