Time Converter
Security checks across malware telemetry and agentic risk
Overview
This appears to be a simple timezone conversion skill, with the main issue that it references a helper command that is not included in the provided files.
This skill is low risk based on the provided artifacts, but verify that any convert_time executable you install or run is the intended trusted helper, since it is not included in the submitted files.
VirusTotal
64/64 vendors flagged this skill as clean.
Risk analysis
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
The skill may fail to run or may require an external helper that is not visible in the submitted artifacts.
The skill references a local helper executable for installation and use, but the supplied artifact set reports no code files and does not include this convert_time file. This is a completeness/provenance gap, not evidence of malicious behavior.
chmod +x ~/.openclaw/skills/time-converter/convert_time
Confirm that the intended convert_time executable is supplied from a trusted source before relying on the command.