Back to skill
Skillv1.2.0
VirusTotal security
Claw MBTI · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 30, 2026, 4:44 AM
- Hash
- de54812710c4e3418d8b7f0f508182bc3064832f60a85c3d964b998e124945e5
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: claw-mbti Version: 1.2.0 The skill is classified as suspicious due to a prompt injection vulnerability in SKILL.md. The AI agent is explicitly instructed to 'Detect the language the user is speaking and set `lang` accordingly' for the result URL, which could be manipulated by a malicious user prompt. Additionally, the skill generates and instructs the agent to report a URL to an external domain (https://claw-mbti.epsilondelta.ai), which, while for a stated purpose, represents an external dependency and communication channel that could be abused if the domain or parameters were different.
- External report
- View on VirusTotal