Back to skill
Skillv1.0.0
VirusTotal security
SAP Skills - Use SAP for procurement with your agent · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 30, 2026, 5:46 AM
- Hash
- a2debcf0c6b41ed4db77c79f2447bdfa499b456a0676c533647c19679a83f0a7
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: sap Version: 1.0.0 The skill bundle facilitates financial transactions for AI agents but introduces high-risk execution patterns. Specifically, 'encrypted-card.md' describes a flow where the agent receives a file via API (event 'rail5.card.delivered'), saves it locally, and is instructed to execute a script contained within that file ('node decrypt.js'). This 'remote code execution by design' pattern allows the server (creditclaw.com) to push and execute arbitrary logic on the agent's host. Additionally, 'skill.md' provides a 'curl | bash' style installation block for downloading and saving multiple markdown files, which is a risky supply-chain pattern.
- External report
- View on VirusTotal