Back to skill
Skillv0.2.6
VirusTotal security
Codex Imagen · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
BenignApr 23, 2026, 1:46 PM
- Hash
- c08998333735faee4d7adee4ada09e7e06f721eb9465f2ea5705fbef932cda42
- Source
- palm
- Verdict
- benign
- Code Insight
- Type: OpenClaw Skill Name: codex-imagen Version: 0.2.6 The codex-imagen skill is a well-engineered utility designed to generate or edit images using the ChatGPT/Codex backend via existing local OAuth credentials. The core logic in scripts/codex-imagen.mjs implements robust authentication discovery across multiple standard paths (e.g., ~/.openclaw, ~/.codex), handles OAuth token refreshing with cross-process file locking, and manages image generation through legitimate OpenAI endpoints (chatgpt.com and auth.openai.com). The script follows security best practices by using atomic writes and restricted file permissions (0o600) for sensitive credential files, and it contains no evidence of data exfiltration, malicious execution, or prompt injection.
- External report
- View on VirusTotal