Back to skill
Skillv1.3.0
VirusTotal security
Hotmention · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
BenignApr 30, 2026, 4:03 AM
- Hash
- 95b1957e7d5bb7dc8175b679aabf2a9017e4fb2ab661d813fcec3751a0a04f3b
- Source
- palm
- Verdict
- benign
- Code Insight
- Type: OpenClaw Skill Name: hotmention Version: 1.3.0 The skill bundle is benign. It transparently describes its purpose to find social media mentions using either `web_search` (free mode) or the `hotmention.com` API (paid mode). It clearly states that keywords are sent to the HotMention API in paid mode, which is expected for its functionality. There are no signs of malicious prompt injection, unauthorized data exfiltration beyond the stated API interaction, persistence mechanisms, or obfuscation. The suggestion to set up a cron job is a user-level tip, not an instruction for the agent to execute system commands.
- External report
- View on VirusTotal