Back to skill
Skillv1.0.0
VirusTotal security
USD1 Transaction · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 29, 2026, 3:25 AM
- Hash
- 8ae945c039bcfee2c99001145ff67e16749884a29b265f577bc6636e48a3f14c
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: Developer: Version: Description: OpenClaw Agent Skill Suspicious High-Entropy/Eval files: 1 The skill is classified as suspicious due to its direct handling of a user-provided private key for initiating cryptocurrency transfers. While this capability is explicitly declared in `SKILL.md` and implemented as the core function in `index.js`, the inherent high risk associated with processing sensitive credentials like private keys warrants a 'suspicious' classification, even without clear evidence of intentional malicious exfiltration or unauthorized use beyond the stated purpose. The skill defaults to Testnet, which is a positive security practice, and there are no signs of prompt injection, obfuscation, or malicious dependencies.
- External report
- View on VirusTotal