Back to skill
Skillv1.1.0
VirusTotal security
Linkedin Monitor · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
ReviewMay 1, 2026, 3:08 AM
- Hash
- 113b3c0614e115951ad4750759650e0e050d180c5b00cb913643d5183e9d931a
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: linkedin-monitor Version: 1.1.0 This skill is classified as suspicious due to its reliance on high-risk capabilities and the local storage of sensitive session cookies. It requires persistent `cron` jobs for hourly monitoring, extensive `browser` tool access to interact with LinkedIn, and stores LinkedIn session cookies (`li_at`, `jsessionid`) in `~/.clawdbot/linkedin-monitor/credentials.json` (as seen in `scripts/lk.py`). While these capabilities are explicitly declared in `package.json` and `SKILL.md` and are necessary for the skill's stated purpose of LinkedIn inbox monitoring, the local storage of session cookies presents a vulnerability if the local system is compromised. The instructions to the agent in markdown files (`SKILL.md`, `CRON-PAYLOAD.md`, `scripts/check-browser.sh`, `scripts/ensure-browser.sh`) are transparent and directly related to the skill's function, showing no evidence of malicious prompt injection or intent to exfiltrate data beyond its stated purpose.
- External report
- View on VirusTotal