Back to skill
Skillv0.5.0
VirusTotal security
Whoop Connect · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
BenignMay 1, 2026, 9:30 AM
- Hash
- 2d57493e49ce09d95dfc0d7a152de8de6f661e4e84a3e1f5b2f8fd274c975167
- Source
- palm
- Verdict
- benign
- Code Insight
- Type: OpenClaw Skill Name: whoop-connect Version: 0.5.0 The whoop-connect skill is a legitimate integration for fetching WHOOP wearable data via the official WHOOP API v2. It implements a standard OAuth2 flow with local token storage, SQLite persistence in `~/.whoop/whoop.db`, and an optional Flask-based webhook receiver (`webhook_server.py`) for real-time updates. The code is well-documented, follows the stated purpose of local data processing, and includes explicit safety instructions in `SKILL.md` to prevent the AI agent from leaking credentials or deleting data.
- External report
- View on VirusTotal