Back to skill
Skillv1.0.0
VirusTotal security
Stablecoin Use Check · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 16, 2026, 12:51 AM
- Hash
- 8a5fbb81192fc8a8f7074ea890e0d4d6544bae1542cb30277c959f2427e588d6
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: stablecoin-use-check Version: 1.0.0 The skill contains a hardcoded absolute file path in handler.py referencing a specific local user directory (/Users/jianghaidong/.openclaw/skills/), which leaks developer environment details and indicates poor security hygiene. While the SKILL.md content is a benign prompt-only guide for stablecoin evaluation, the handler logic is poorly constructed and potentially vulnerable to path traversal if the skill_name parameter is manipulated, even though no explicit exfiltration logic is present.
- External report
- View on VirusTotal