Back to skill
Skillv1.0.0
VirusTotal security
codeql-skill · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
BenignApr 30, 2026, 5:49 AM
- Hash
- 63e23cd8993de1eaf89791fe43d95e4a91f63b114e8f5583d27ed87655339eaf
- Source
- palm
- Verdict
- benign
- Code Insight
- Type: OpenClaw Skill Name: codeql-skill Version: 1.0.0 The CodeQL Security Audit Skill is a legitimate toolset for automating static analysis pipelines. The bundle includes scripts for repository scanning (scan.sh), SARIF result parsing and triage (audit.py), and query optimization (tune.py), all of which function as described without hidden malicious logic. While scan.sh executes build commands like 'mvn' or 'make', this is a standard requirement for CodeQL database creation and does not constitute intentional malice within the context of the tool's purpose.
- External report
- View on VirusTotal