Back to skill
Skillv1.0.69
VirusTotal security
Vincent - Twitter · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 30, 2026, 4:01 AM
- Hash
- 4f810ff2b4835635be89cdb204ad656f0c1402837b4d9c7f2bfc073594c76939
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: vincent-twitter Version: 1.0.69 The skill facilitates Twitter access via a third-party proxy (heyvincent.ai) but incorporates high-risk behaviors, including autonomous crypto wallet signing for credit replenishment and the execution of remote code via 'npx @vincentai/cli@latest' (SKILL.md). While these capabilities are aligned with the stated purpose of an agent-first data source, the ability for an agent to independently sign transactions and pull latest packages from a registry presents a significant security surface. It also requires specific file system access to manage its own credentials in the user's home directory.
- External report
- View on VirusTotal