Back to skill
Skillv2.0.3
VirusTotal security
ohmytoken · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
BenignApr 30, 2026, 4:39 AM
- Hash
- 8783208798d95138d85df9db09b98f29aef21100fd0b4a694865e7ba01167971
- Source
- palm
- Verdict
- benign
- Code Insight
- Type: OpenClaw Skill Name: ohmytoken Version: 2.0.3 The OpenClaw skill 'ohmytoken' is benign. Its `src/index.ts` code accurately reflects the stated purpose of tracking LLM token usage by sending only the model name, prompt tokens, and completion tokens to `https://api.ohmytoken.dev/api/v1/ingest`. The `claw.json` manifest correctly declares the necessary 'network' permission. All documentation (`SKILL.md`, `README.md`, `instructions.md`) is transparent about data collection, explicitly stating what is and is not sent, and provides no evidence of prompt injection attempts or instructions for the AI agent to perform unauthorized actions.
- External report
- View on VirusTotal