Back to skill
Skillv1.0.0
VirusTotal security
Paragon MLS Fetch Listings · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 20, 2026, 12:16 PM
- Hash
- abe8816a45424bd8b602d5b6ad7a679166edd344dca66616e882c2c099f83104
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: paragon-mls-fetch-listings Version: 1.0.0 The skill bundle contains hardcoded absolute paths to a specific local environment (/home/umbrel/.openclaw/workspace/deal-analyst/) in both SKILL.md and scripts/build.sh. The build script executes 'npm install' and 'npm run build' within that external directory, which is a risky pattern as it performs host-level modifications and dependency fetching outside of the skill's own isolated scope, though no clear malicious intent is present.
- External report
- View on VirusTotal