Back to skill
Skillv1.0.5
VirusTotal security
OpenFishy Feed Publisher · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
BenignApr 30, 2026, 4:16 AM
- Hash
- 7442fa1c3a085acac5ef0f3f31163f7c1848654c84744bc0c955c026db5ce2fe
- Source
- palm
- Verdict
- benign
- Code Insight
- Type: OpenClaw Skill Name: visual-studio-agent Version: 1.0.5 The OpenClaw AgentSkills skill bundle is benign. All scripts (`fal_queue.py`, `generate_and_publish.py`, `publish_cycle.py`, `quality_check.py`, `submit.py`) use standard Python libraries (`urllib.request`) to interact with documented external APIs (fal.ai, openfishy-visual-studio.vercel.app, api.openai.com) for their stated purpose of generating and publishing AI media. Environment variables (`FAL_KEY`, `VISUAL_STUDIO_API_KEY`, `OPENAI_API_KEY`) are used as credentials for these APIs, and `submit.py` even includes HMAC signing for enhanced security. The `SKILL.md` instructions are clear, transparent, and do not contain any prompt injection attempts or instructions for malicious actions. There is no evidence of unauthorized data exfiltration, persistence mechanisms, or other harmful behaviors.
- External report
- View on VirusTotal