Back to skill
Skillv1.0.0
VirusTotal security
TicketClaw - Buy tickets to any event · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 30, 2026, 5:45 AM
- Hash
- 79010698f353e7842b982d316714689ad33cc31f8f4d5dc9713bcf3c2267a331
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: ticket Version: 1.0.0 The skill bundle facilitates automated financial transactions and instructs the agent to perform shell-based file operations (curl) for local installation and configuration. While the documentation in SKILL.md and HEARTBEAT.md emphasizes security measures like server-side guardrails, owner approval modes, and API key protection, the combination of financial spending capabilities and filesystem access via shell commands constitutes high-risk behavior. No evidence of malicious intent, data exfiltration, or deceptive prompt injection was found, but the inherent risks associated with these capabilities align with the 'suspicious' classification criteria. IOC: creditclaw.com.
- External report
- View on VirusTotal