Back to skill
Skillv1.5.3
VirusTotal security
Clack · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
BenignApr 30, 2026, 4:36 AM
- Hash
- 9cbd801f28e3b955c04497cf4d48e97969f255635a449df594d1ad64f42f7917
- Source
- palm
- Verdict
- benign
- Code Insight
- Type: OpenClaw Skill Name: clack Version: 1.5.3 The skill bundle is classified as benign. The `SKILL.md` and `server.py` implement strong defenses against prompt injection, including explicit AI safety rules and robust input sanitization (`sanitize_context` function in `server.py`) that strips potentially harmful characters, IP addresses, and domains from user context. While the `scripts/setup.sh` script performs extensive system modifications (e.g., installing packages, configuring systemd, Caddy/Nginx, Certbot) and makes an external network call (`curl ifconfig.me`), these actions are clearly documented, interactive, and necessary for the stated purpose of setting up a secure, self-hosted voice relay server. There is no evidence of intentional harmful behavior, data exfiltration (beyond public IP for setup validation), or obfuscation.
- External report
- View on VirusTotal