Back to skill
Skillv1.0.2
VirusTotal security
Waboxapp · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 30, 2026, 5:47 AM
- Hash
- b472d7820093bcd5bf67183f3335914fa411708b5739957bd487d41aa2d26d0c
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: waboxapp Version: 1.0.2 The skill provides instructions for an AI agent to integrate with Waboxapp using the Membrane CLI, which involves high-risk operations such as global NPM package installation (@membranehq/cli) and arbitrary network requests via a proxy command (membrane request). While these capabilities are clearly aligned with the stated purpose and no evidence of malicious intent or data exfiltration was found, the requirement for shell execution and network access qualifies as suspicious under the provided criteria for risky capabilities plausibly needed for the stated purpose.
- External report
- View on VirusTotal