Back to skill
Skillv1.0.0
VirusTotal security
Exchange Rate · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
BenignApr 30, 2026, 4:02 AM
- Hash
- 3e4734e09bdd1910fc8291ad2b6250b42ddb3e5fda1cee2e738c63e3e818af63
- Source
- palm
- Verdict
- benign
- Code Insight
- Type: OpenClaw Skill Name: exchange-rate Version: 1.0.0 The skill bundle is benign. It transparently declares its sole dependency on the `QVERIS_API_KEY` and its exclusive network communication with `qveris.ai` over HTTPS. The `exchange_rate.mjs` script correctly retrieves the API key from environment variables and uses user inputs to construct JSON payloads for the QVeris API, preventing injection vulnerabilities. There is no evidence of data exfiltration, arbitrary command execution, persistence mechanisms, or prompt injection attempts in any of the files.
- External report
- View on VirusTotal