Skillv0.1.0

VirusTotal security

Nautilus Trader · External malware reputation and Code Insight signals for this exact artifact hash.

BenignApr 30, 2026, 4:41 AM

Hash: 099b0aaeef3bedf229aa8eb20dab8609f4de94192e6695774a5b7efd09d5b996
Source: palm
Verdict: benign
Code Insight: Type: OpenClaw Skill Name: nautilus-trader Version: 0.1.0 The skill is designed for algorithmic trading on Hyperliquid, which inherently involves high-risk operations like handling cryptocurrency private keys and executing live trades. The `SKILL.md` and Python scripts (`references/hyperliquid_patch.py`, `references/live_trading.py`, `references/set_leverage.py`) transparently request and use `HYPERLIQUID_PK` and `HYPERLIQUID_VAULT` from environment variables to interact with the legitimate Hyperliquid API. The `hyperliquid_patch.py` file implements a monkey-patch to fix known bugs in the Nautilus Trader's Hyperliquid adapter (serialization and price precision issues), which is a vulnerability *fix* for a third-party library, not a malicious act by the skill itself. All actions, including the use of broad `Bash` permissions for `pip install` and script execution, are directly aligned with the stated purpose of enabling live trading and strategy development, without any evidence of intentional harmful behavior or prompt injection attempts against the agent.
External report: View on VirusTotal