Back to skill
Skillv1.0.4
VirusTotal security
Segmetrics · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 30, 2026, 7:01 PM
- Hash
- db7bf954d0d8942faab606707d320762b1ff3aff31a8c55b29ef13c3410e7356
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: segmetrics Version: 1.0.4 The skill requires the installation of a global NPM package (@membranehq/cli) and uses a third-party service (Membrane) to proxy all API requests and handle authentication. These are risky capabilities involving shell execution and external network dependencies that, while aligned with the stated purpose of SegMetrics integration, increase the attack surface of the agent. No evidence of intentional malice was found in SKILL.md or _meta.json.
- External report
- View on VirusTotal