Back to skill
Skillv1.0.0
VirusTotal security
Danish News Aggregator · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 30, 2026, 5:05 AM
- Hash
- 8bd543ab4839ddd98d26599e8703e0eff1e344cf55028b2c322b6a55675ca60c
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: danish-news-aggregator Version: 1.0.0 The skill bundle is a functional Danish news aggregator, but it contains a significant security vulnerability in aggregate_feeds.py, where SSL certificate verification is explicitly disabled (ssl.CERT_NONE). This allows for potential Man-in-the-Middle (MitM) attacks when fetching feeds. While likely an unintentional development shortcut rather than a malicious backdoor, it constitutes a high-risk vulnerability. The rest of the code, including aggregator.py and the RSS configurations, appears aligned with the stated purpose, though aggregator.py contains minor syntax errors in its feed list.
- External report
- View on VirusTotal