Back to skill
Skillv1.0.0
VirusTotal security
Briefing Diario · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
ReviewMay 1, 2026, 4:44 AM
- Hash
- faa93b3b741dd902c80c541ff98c98ca5cfec74733efdf236662f9c812fc36a5
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: briefing-diario Version: 1.0.0 The skill instructs the OpenClaw agent to execute a direct shell command (`TZ="America/Sao_Paulo" date`) to retrieve the current date and time. While this specific command is benign and serves a legitimate purpose within the skill's functionality, the explicit instruction for shell command execution represents a risky capability. This capability, if present in other skills or combined with user-controlled input, could lead to shell injection vulnerabilities. The skill also makes several external API calls to public services (Open-Meteo, AwesomeAPI, Nager.at) for weather, currency, and holiday data, which are aligned with its stated purpose and do not show signs of data exfiltration or malicious intent.
- External report
- View on VirusTotal