Back to skill
Skillv1.0.0
VirusTotal security
Codex Deep Search · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 30, 2026, 5:19 AM
- Hash
- 104c16c5b44d13a817937da5fffaed1f06f4fc5171386505fefdfc41686d2d53
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: codex-deep-search Version: 1.0.0 The skill exhibits high-risk behaviors including arbitrary file write capabilities via the unsanitized '--output' parameter and the extraction of sensitive credentials ('HOOK_TOKEN') from the local '~/.openclaw/openclaw.json' configuration file. While these are used for legitimate-seeming functions like task callbacks and local API 'wake' hooks, the script also contains hardcoded absolute paths to a specific user's directory ('/Users/gdjwz/'), suggesting it was exported from a specific environment without proper sanitization. The combination of credential access and the ability to overwrite files makes it highly vulnerable to exploitation via prompt injection.
- External report
- View on VirusTotal