Back to skill
Skillv1.0.0
VirusTotal security
Buffer Social Media · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
BenignApr 30, 2026, 5:01 AM
- Hash
- ed2e60e65db91a089f5423e2462743df5f75765771c13df6e4f15adad164327c
- Source
- palm
- Verdict
- benign
- Code Insight
- Type: OpenClaw Skill Name: buffer-social Version: 1.0.0 The OpenClaw Buffer skill is a well-structured Node.js CLI tool designed for legitimate interaction with the Buffer GraphQL API. All code, dependencies (axios, chalk, commander, dotenv, ora), and documentation (SKILL.md, README.md, prds/buffer-skill.md) align with its stated purpose of social media post management. There is no evidence of data exfiltration, malicious execution, persistence mechanisms, obfuscation, or prompt injection attempts against the OpenClaw agent. While the `validateImagePath` function checks for local file existence, the image upload feature is explicitly noted as 'BLOCKED' and is not implemented in the GraphQL API calls, thus preventing any potential file content exfiltration or arbitrary file reads.
- External report
- View on VirusTotal