Back to skill
Skillv0.5.3
VirusTotal security
SecureVibes Scanner · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
BenignApr 30, 2026, 4:03 AM
- Hash
- 7fc15fafd2688e2aee122eaa580cbfbf692656f4bafb79a59aea111682f89ba1
- Source
- palm
- Verdict
- benign
- Code Insight
- Type: OpenClaw Skill Name: securevibes-scanner Version: 0.5.3 The OpenClaw skill 'securevibes-scanner' is benign. The `SKILL.md` explicitly addresses prompt injection risks, advising against unsanitized user input and stating that the `scripts/scan.sh` wrapper validates paths. The `scripts/scan.sh` file implements robust input validation using a regex to reject shell metacharacters from the `PROJECT_PATH` argument, effectively preventing shell injection. The `ops/incremental_scan.py` script uses `subprocess.run` with argument lists, which is the secure method for executing external commands in Python. There is no evidence of data exfiltration, unauthorized persistence, or other malicious intent; all actions align with its stated purpose as an AI-powered security scanner.
- External report
- View on VirusTotal