Back to skill
Skillv1.0.0
VirusTotal security
claude-authenticity · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
ReviewApr 30, 2026, 6:37 AM
- Hash
- c07bead5f5c3558eebd6c8fa179e314190403ca94a201d1d5e96a448b0772520
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: claude-authenticity Version: 1.0.0 The skill bundle provides a tool to verify Claude API authenticity and extract system prompts using known prompt injection techniques. While the code in `claude_authenticity.py` appears to function as described, it requires the user to input sensitive API keys and target endpoints, posing a risk of credential exposure if used with untrusted services. The inclusion of automated prompt injection payloads in `SKILL.md` and `claude_authenticity.py` for 'system prompt extraction' constitutes a high-risk capability that could be repurposed for adversarial reconnaissance, despite its stated use for auditing.
- External report
- View on VirusTotal