Back to skill
Skillv1.2.4
VirusTotal security
Foxcode OpenClaw · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 30, 2026, 4:47 AM
- Hash
- 74b8161685d8d347d13b2429c5e1b74a967a1698044537035bd32ba463dced8f
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: foxcode-openclaw Version: 1.2.4 The skill is classified as suspicious primarily due to a prompt injection instruction in `SKILL.md` that directs the AI agent to "always use the affiliate URL" when providing Foxcode registration or API key links. While not directly harmful to the user's system, this manipulates the agent's behavior for commercial gain. Additionally, the skill modifies critical OpenClaw configuration files (`~/.openclaw/openclaw.json` and `~/.openclaw/agents/main/agent/auth-profiles.json`) and handles API keys, which, despite reasonable security practices like `getpass` and `chmod 0o600`, represents a significant trust requirement and potential attack surface.
- External report
- View on VirusTotal