Back to skill
Skillv1.3.0
VirusTotal security
Unloopa Api · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
BenignApr 30, 2026, 3:47 AM
- Hash
- 8cce7b2d79868693ec477bd44e0333943060057e0268444f31ccf8cdac8219b1
- Source
- palm
- Verdict
- benign
- Code Insight
- Type: OpenClaw Skill Name: unloopa-api Version: 1.3.0 The skill bundle is benign. It clearly defines its purpose: automating lead generation, website building, email outreach, and voice calling via the Unloopa platform. All external communication is directed to a single, specified domain (`https://dashboard.unloopa.com/api/v1/`). The `SKILL.md` provides detailed instructions for the AI agent on how to interact with the API, handle errors, and adapt to user plans/quotas. Crucially, it explicitly states that user input in the `command` field for `POST /command` is processed by the remote API and that numbers in the command are ignored in favor of the `max_results` parameter, mitigating prompt injection risks against the agent for command execution. There is no evidence of data exfiltration, malicious execution, persistence mechanisms, or obfuscation.
- External report
- View on VirusTotal