Back to skill
Skillv1.2.0
VirusTotal security
AVE Cloud Skill · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
BenignApr 30, 2026, 4:52 AM
- Hash
- 096573ddb5530917ae699dd2aa590c5842ad6d53ccef9e0b47961f71ae25d37c
- Source
- palm
- Verdict
- benign
- Code Insight
- Type: OpenClaw Skill Name: ave-cloud Version: 1.2.0 The OpenClaw skill 'ave-cloud' is designed to interact with the AVE Cloud API for crypto data. The Python scripts (`ave_data_rest.py`, `ave_data_wss.py`) use `argparse` with `choices` for input validation and construct API requests safely using `urllib.parse.urlencode` or JSON payloads, mitigating common injection risks. Inter-process communication via `docker exec` and named pipes (`/tmp/ave_pipe`) employs `shlex.quote` and list-based `subprocess.run` calls, preventing shell injection. The Docker container persistence is for a stated, legitimate purpose (streaming data for 'pro' plans). No evidence of data exfiltration to unauthorized endpoints, credential theft, or other malicious intent was found. The `SKILL.md` instructions are clear and do not contain deceptive or harmful directives for the AI agent.
- External report
- View on VirusTotal