Back to skill
Skillv2.1.0
VirusTotal security
Qto Report · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
BenignMay 1, 2026, 3:35 AM
- Hash
- 8dcb0e2c9b7d449b921012f417ce5d38b205d9aaf99ccb97cb11cb620b33d245
- Source
- palm
- Verdict
- benign
- Code Insight
- Type: OpenClaw Skill Name: qto-report Version: 2.1.0 The skill is designed to generate Quantity Take-Off (QTO) reports from BIM/CAD data, which inherently requires file system access. The `claw.json` explicitly requests `filesystem` permission, which is justified by the skill's functionality (reading CSV/Excel/IFC files and exporting reports). The `SKILL.md` and `instructions.md` files contain no evidence of prompt injection attempts, data exfiltration, malicious execution, persistence mechanisms, or obfuscation. All code snippets demonstrate standard data processing using `pandas` and `ifcopenshell` for their intended purposes, performing only local file I/O operations aligned with the stated goal.
- External report
- View on VirusTotal