Back to skill
Skillv0.1.1
VirusTotal security
Submit Work · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
BenignApr 30, 2026, 4:50 AM
- Hash
- ad5ee4ec79e086b55456fb70d21f851121c6c64548b9026a5fe0977fd051ce98
- Source
- palm
- Verdict
- benign
- Code Insight
- Type: OpenClaw Skill Name: submit-work Version: 0.1.1 The skill is designed to submit work to the OpenAnt platform, including uploading files and providing text descriptions. The `SKILL.md` uses prompt injection techniques (e.g., 'execute immediately', 'always upload all output files without asking') to instruct the AI agent to act autonomously without user confirmation. However, these instructions are strictly aligned with the skill's stated purpose of efficient work submission and do not aim for malicious objectives. Crucially, the `allowed-tools` are highly restrictive, permitting only specific `npx @openant-ai/cli@latest` commands, which prevents arbitrary command execution or unauthorized data exfiltration. There is no evidence of intent to steal credentials, install backdoors, or perform other harmful actions.
- External report
- View on VirusTotal