Back to skill
Skillv0.1.1
VirusTotal security
Hostex · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
BenignApr 29, 2026, 3:18 AM
- Hash
- acce7c4de91ccbfb736a99a4aced9c4805331cc9a13dccd194c0013847237f7b
- Source
- palm
- Verdict
- benign
- Code Insight
- Type: OpenClaw Skill Name: hostex Version: 0.1.1 The skill bundle is designed for legitimate interaction with the Hostex API, providing both read and guarded write operations. Key security indicators include explicit 'Operational guardrails' in SKILL.md instructing the AI agent to summarize changes and require user confirmation for write operations, and the `scripts/hostex-write.mjs` code enforces these by checking `HOSTEX_ALLOW_WRITES=true` and a `--confirm` flag. The `scripts/hostex-client.mjs` file also includes `redactSecret` for token handling in logs. There is no evidence of data exfiltration, malicious execution, persistence mechanisms, or obfuscation. The `openapi-sync.mjs` script fetches the OpenAPI spec from a legitimate Hostex domain (hostex.io) for local caching.
- External report
- View on VirusTotal