Back to skill
Skillv1.0.4
VirusTotal security
Financial Ai Agent · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
ReviewMay 1, 2026, 8:42 AM
- Hash
- ae506662fc1c2326862919653d4f558bb65776b1216433b54add77699565d94a
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: financial-ai-agent Version: 1.0.4 The skill instructions in SKILL.md direct the AI agent to perform read and write operations on the user's local configuration file (~/.openclaw/openclaw.json) using shell commands (cat, jq, mv). While these actions are intended to manage the 'financial_agent_key' for the service at api.financialagent.cc, instructing an agent to manipulate global configuration files is a high-risk behavior that could be leveraged to access or corrupt other sensitive credentials stored in the same file.
- External report
- View on VirusTotal