Back to skill
Skillv1.0.2
VirusTotal security
ClawMon · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
BenignApr 30, 2026, 4:16 AM
- Hash
- 96c5ebb71524865ca881ca77a706458e3db1374db03ffc70538070e982f4283f
- Source
- palm
- Verdict
- benign
- Code Insight
- Type: OpenClaw Skill Name: clawmon Version: 1.0.2 The OpenClaw AgentSkills bundle for 'clawmon' is benign. The `SKILL.md` clearly defines its purpose as a read-only trust registry lookup service, making HTTPS GET requests to `https://trusted-clawmon-api.up.railway.app`. It explicitly states that no sensitive user data, wallet addresses, API keys, or private keys are transmitted, and any optional feedback submission is opt-in and uses pseudonymous identifiers. There are no instructions for data exfiltration, malicious execution, persistence, or prompt injection attempts against the agent. The skill's source code is publicly available, enhancing transparency.
- External report
- View on VirusTotal