Back to skill
Skillv2.2.98
VirusTotal security
Strava CLI Skill · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
BenignApr 30, 2026, 4:19 AM
- Hash
- 0c9dd68ce4f4d9dc6fd83afeceb8c0be3762d87a8398a1517a0e86ccf572376a
- Source
- palm
- Verdict
- benign
- Code Insight
- Type: OpenClaw Skill Name: stravacli Version: 2.2.98 The skill bundle is benign. It provides instructions for an AI agent to install and use the `stravacli` terminal tool for Strava operations. The `SKILL.md` file contains clear, transparent instructions for setup, authentication, and command usage, including legitimate file export and upload actions. There is no evidence of prompt injection attempts, data exfiltration to unauthorized endpoints, malicious execution, persistence mechanisms, or obfuscation within the provided files. The reliance on an external binary from GitHub is a standard integration pattern and does not indicate malice in the skill bundle itself.
- External report
- View on VirusTotal