Back to skill
Skillv0.1.5
VirusTotal security
Voice Log · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
BenignMay 1, 2026, 4:28 AM
- Hash
- 96738dcf4762c264225c5c43e214a538c6db9743399f43f25899fd20d2920d61
- Source
- palm
- Verdict
- benign
- Code Insight
- Type: OpenClaw Skill Name: voice-log Version: 0.1.5 The OpenClaw voice-log skill is designed for background voice journaling using Soniox STT. It demonstrates strong security practices, including explicitly limiting environment variables passed to child processes, deleting the `SONIOX_API_KEY` from the daemon's environment after use, and using `spawn` with hardcoded commands/arguments for audio capture to prevent shell injection. All data is confined to a local, hardened `.data` directory. The `SKILL.md` instructions for the AI agent are benign, focusing on controlling output and accurate reporting, with no evidence of prompt injection attempts to subvert the agent's behavior or exfiltrate data. No malicious intent or high-risk vulnerabilities were identified.
- External report
- View on VirusTotal