Back to skill
Skillv1.1.1
VirusTotal security
Claw Secure Auditor · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
BenignApr 30, 2026, 4:59 AM
- Hash
- 038b1ba0e7194053b0c89d5d9e260ece8f786fb31305f29a88e68f4083987125
- Source
- palm
- Verdict
- benign
- Code Insight
- Type: OpenClaw Skill Name: claw-secure-auditor Version: 1.1.1 The OpenClaw Secure Auditor skill bundle is classified as benign. Its primary function is static analysis of other skills, searching for dangerous patterns like shell execution, file deletion, credential exposure, and prompt injection keywords. The `auditor.py` script correctly implements this read-only scanning functionality without executing any of the detected patterns, modifying files, or exfiltrating data. Although `SKILL.md` mentions a `VIRUSTOTAL_API_KEY` and 'reputation scoring' implying external API calls, the provided Python script does not actually utilize this key or make any network requests, which is a functional discrepancy but not indicative of malicious intent. There is no evidence of prompt injection against the agent, obfuscation, or persistence mechanisms.
- External report
- View on VirusTotal