Back to skill
Skillv1.11.0
VirusTotal security
OpenTIL · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
BenignMay 1, 2026, 3:51 AM
- Hash
- 7a18bdd4aea244d8e78b088842959451b8fbd34d741ca3b45715893c0e05ee32
- Source
- palm
- Verdict
- benign
- Code Insight
- Type: OpenClaw Skill Name: til Version: 1.11.0 The OpenClaw AgentSkills skill bundle for OpenTIL is classified as benign. It performs expected operations for a 'Today I Learned' management tool, including extensive API calls to `https://opentil.ai`, reading/writing sensitive API tokens to `~/.til/credentials`, and managing local drafts in `~/.til/drafts/`. While these capabilities are high-risk, the skill explicitly implements strong security measures like `chmod 600` for the credentials file and guides users on secure token management. A prompt injection instruction ('DO NOT read reference files unless specified below') is present in `SKILL.md`, but its intent is to control the agent's internal context rather than to induce malicious behavior, making it a benign control mechanism.
- External report
- View on VirusTotal