Back to skill
Skillv1.0.0
VirusTotal security
Meeting Notes Summarizer · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
BenignApr 29, 2026, 4:22 AM
- Hash
- 11586b8120b1fb0acf4fd8d55c4529c9e8e432877e9fc410558c025d7ed83001
- Source
- palm
- Verdict
- benign
- Code Insight
- Type: OpenClaw Skill Name: shelly-meeting-summarizer Version: 1.0.0 The skill bundle is benign. The `summarize.sh` script securely handles user input by using `python3 -c 'import sys,json; print(json.dumps(sys.stdin.read()))'` to properly JSON-escape the transcript before sending it to the Anthropic API. This prevents shell and JSON injection vulnerabilities. The script's purpose is clearly defined as summarizing meeting transcripts using an LLM, and it makes a legitimate API call to `api.anthropic.com` using an environment variable for the API key. There is no evidence of data exfiltration, unauthorized execution, persistence mechanisms, or prompt injection attempts against the OpenClaw agent in `SKILL.md`.
- External report
- View on VirusTotal