Back to skill
Skillv1.0.0
VirusTotal security
Falcon · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
BenignMay 3, 2026, 3:41 AM
- Hash
- 3ae0638881adfe4464bdc31f827417481ea0df89c2c01de009b683e768fa3e66
- Source
- palm
- Verdict
- benign
- Code Insight
- Type: OpenClaw Skill Name: falcon Version: 1.0.0 The skill is designed to interact with TwexAPI for Twitter/X, requiring `TWEXAPI_KEY` and `TWITTER_COOKIE` environment variables. The `falcon.sh` script demonstrates robust security practices, including extensive input validation (regex for usernames, counts, path segments) to prevent shell injection, and secure handling of secrets by writing them to temporary files for `curl` to avoid exposure in process arguments. JSON payloads are constructed using `jq -n --arg` to properly escape user input, mitigating JSON injection risks. The `SKILL.md` explicitly instructs the AI agent to confirm write and engagement actions with the user, which is a positive security measure. Permissions in `.claude/settings.local.json` are appropriate for a CLI tool, and no evidence of data exfiltration to unauthorized endpoints, malicious execution, persistence, or obfuscation was found.
- External report
- View on VirusTotal