Back to skill
Skillv0.1.2
VirusTotal security
Agentmail.to Inbox Ops · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
BenignApr 30, 2026, 4:24 AM
- Hash
- 746f75bb9d00e5ec54cad5a16d8d69ee3cb9228c16b13548be7d964fde197237
- Source
- palm
- Verdict
- benign
- Code Insight
- Type: OpenClaw Skill Name: agentmail-to-inbox-ops Version: 0.1.2 The skill is designed for Agentmail.to inbox operations and demonstrates a strong commitment to security. It includes robust hardening measures such as filename sanitization and path traversal prevention in `scripts/download_attachments.py`, HTTPS enforcement for downloads, and resource-limited subprocess execution with timeouts for attachment parsing in `scripts/analyze_attachment.py`. The `SKILL.md` and `README.md` provide clear guardrails and recommendations for safe usage, including sandboxing for attachment analysis. Unit tests (`tests/test_security_hardening.py`) specifically validate these security controls, and the CI/CD pipeline includes dependency auditing. There is no evidence of intentional malicious behavior, data exfiltration, or prompt injection attempts.
- External report
- View on VirusTotal