Back to skill
Skillv2.0.0
VirusTotal security
moltycash · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
BenignMay 1, 2026, 3:42 AM
- Hash
- 52af3c53fac60c0581750a286a0fcae76dd68e285b9201698b3b5d9afbf33923
- Source
- palm
- Verdict
- benign
- Code Insight
- Type: OpenClaw Skill Name: moltycash Version: 2.0.0 The skill bundle is benign. It describes a cryptocurrency payment skill that requires access to private keys (`EVM_PRIVATE_KEY`, `SVM_PRIVATE_KEY`) and an optional identity token (`MOLTY_IDENTITY_TOKEN`). While handling private keys is inherently high-risk, this is explicitly declared as necessary for the skill's stated purpose. The `SKILL.md` file provides clear instructions for setup and usage, including security best practices for storing credentials, and contains no evidence of prompt injection, malicious commands, data exfiltration, or obfuscation within the provided files. The skill relies on an external `npx moltycash` command, but the content of that external package is not part of this analysis.
- External report
- View on VirusTotal