Back to skill
Skillv1.0.2
VirusTotal security
SearXNG Local Search · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
BenignApr 30, 2026, 4:28 AM
- Hash
- 20cfdc2cf8381238f801759b7c1008ef90bcfdbe754e8933668b40df52fc246a
- Source
- palm
- Verdict
- benign
- Code Insight
- Type: OpenClaw Skill Name: searxng-local-search-v1 Version: 1.0.2 The skill is designed to interact with a self-hosted SearXNG instance via an HTTP GET request, as defined in SKILL.md. The `command.kind` is explicitly `http`, not `shell`, and the documentation in SKILL.md reinforces this by stating, 'This skill uses HTTP requests only and does not execute shell commands.' The default target URL is `http://localhost:8080`, promoting local and controlled usage. There is no evidence of data exfiltration, malicious execution, persistence mechanisms, prompt injection attempts against the agent, or obfuscation. The provided Docker setup instructions are for the user, not the agent, and include security best practices like binding to `127.0.0.1` and changing the default secret key.
- External report
- View on VirusTotal