Back to skill
Skillv1.0.4
VirusTotal security
MrScraper · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
BenignApr 30, 2026, 4:15 AM
- Hash
- 81a6c0312c3125e4e3d3ef8a6c0e990427fe30abed21a07b4ee311d87fc1bc6b
- Source
- palm
- Verdict
- benign
- Code Insight
- Type: OpenClaw Skill Name: mrscraper Version: 1.0.4 The skill bundle is benign. It defines an API-only web scraping skill for the MrScraper service, explicitly listing allowed network hosts and requiring an API token from environment variables. The `SKILL.md` provides clear instructions and security best practices for token handling, and explicitly states that no local scripts or persistence mechanisms are involved. There are no prompt injection attempts against the AI agent, nor any indicators of intentional malicious behavior such as data exfiltration to unauthorized endpoints, backdoors, or obfuscation. Potential vulnerabilities related to user-supplied input (e.g., arbitrary JavaScript injection via the `workflow` parameter or ReDoS via regex patterns) are issues for the AI agent's input sanitization or the MrScraper platform itself, not evidence of malice within this skill definition.
- External report
- View on VirusTotal