Back to skill
Skillv1.0.0
VirusTotal security
1password 1.0.1 · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 28, 2026, 5:09 AM
- Hash
- a6b601e34e5b157b300d0f68da2a071ee22cefe98ff2bfd021dffd104533e55f
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: 1password-1-0-1 Version: 1.0.0 The skill provides access to 1Password secrets, which is a high-risk capability. It requires a complex execution environment using tmux with custom sockets and terminal output capture (capture-pane) in SKILL.md to handle CLI interactions. This workflow, combined with examples in references/cli-examples.md that use the --no-masking flag, creates a significant risk of unintentional secret exposure within the agent's logs or observation history, despite the presence of written guardrails against secret leakage.
- External report
- View on VirusTotal