Back to skill
Skillv1.0.5
VirusTotal security
Freepik · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
BenignApr 30, 2026, 4:09 AM
- Hash
- 5ff01f05410c5399de84cfb19782c5dd47f16311d068df58ddab379799098102
- Source
- palm
- Verdict
- benign
- Code Insight
- Type: OpenClaw Skill Name: freepik Version: 1.0.5 The OpenClaw Freepik skill is classified as benign. It is well-documented with explicit security rules in `SKILL.md` (e.g., 'NEVER use `curl` to download from non-Freepik domains', 'NEVER read, encode, or transmit files outside the user's explicitly provided input files', 'NEVER use `base64` to encode local files') which serve as strong prompt-injection defenses for the AI agent. The `allowed-tools` in `SKILL.md` are appropriately restrictive, permitting `curl` only to `*.freepik.com`, `jq` for JSON parsing, and `mkdir` for session-specific directories (`~/.freepik/sessions/`). There is no evidence of intentional harmful behavior, data exfiltration to unauthorized endpoints, or malicious execution capabilities beyond the stated purpose of interacting with the Freepik API and saving generated content locally.
- External report
- View on VirusTotal