Back to skill
Skillv1.3.2
VirusTotal security
Todokan · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
BenignApr 30, 2026, 4:33 AM
- Hash
- c96457bce856fcc322116dabe682d70549b51c31d5eca2e184b975e738c4e3bb
- Source
- palm
- Verdict
- benign
- Code Insight
- Type: OpenClaw Skill Name: todokan Version: 1.3.2 The OpenClaw Todokan skill bundle is classified as benign. The `SKILL.md` file, which dictates agent behavior, includes robust guardrails such as explicit confirmation for destructive actions (e.g., `delete_task`), warnings against storing sensitive data, and clear scope awareness for different API endpoints. There is no evidence of data exfiltration, malicious execution, persistence mechanisms, or prompt injection attempts designed to bypass user intent or security. The required environment variables (`TODOKAN_API_KEY`, `TODOKAN_MCP_URL`) are standard for API integrations, and the listed external endpoints (`https://todokan.com/mcp`, `https://staging--todokan.netlify.app/mcp`) appear legitimate for the stated purpose.
- External report
- View on VirusTotal