Back to skill
Skillv1.0.0
VirusTotal security
Social Hub Server · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
ReviewMay 1, 2026, 3:34 AM
- Hash
- 0bd70badd1fc7b88f4fd5eadff5a1c0521df46b4af50a378f39567e3e4dac127
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: social-hub-server Version: 1.0.0 The skill is classified as suspicious due to its instruction to set up cron jobs and store sensitive user data locally. While the stated purpose of these actions (scheduled matching scans, online status checks, and user registry/match history storage) aligns with the skill's description as a matching engine, the ability to configure cron jobs represents a high-privilege capability that could be leveraged for persistence or malicious execution if the agent were compromised or instructed differently. The local storage of sensitive user data in `~/.matchbot-engine/registry.json`, `~/.matchbot-engine/match_history.json`, and `~/.matchbot-engine/chromadb/` also increases the attack surface for data exfiltration if the host system is compromised. No explicit malicious intent or prompt injection attempts were found in SKILL.md.
- External report
- View on VirusTotal