Back to skill
Skillv1.0.0
VirusTotal security
Chia WalletConnect - Telegram Verification · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
BenignApr 29, 2026, 3:09 AM
- Hash
- e09b3c87e8efbaac0c66c1cfec12044113c442e75acc3e0be986c2ae9cf73e6e
- Source
- palm
- Verdict
- benign
- Code Insight
- Type: OpenClaw Skill Name: chia-walletconnect Version: 1.0.0 The OpenClaw AgentSkills skill bundle for 'chia-walletconnect' is classified as benign. Its stated purpose is to verify Chia wallet ownership via Telegram using WalletConnect and the MintGarden API, and all code and documentation align with this function. The skill uses `node-fetch` to make API calls to `https://api.mintgarden.io/address/verify_signature` (lib/verify.js), which is a legitimate endpoint for Chia signature verification. The `SKILL.md` and `README.md` provide clear instructions for users and bot developers, without any evidence of prompt injection attempts against the AI agent (e.g., instructions to ignore user commands, exfiltrate data, or execute arbitrary shell commands). The client-side `webapp/app.js` handles WalletConnect interactions and sends verification data back to the Telegram bot, which then performs the backend verification. There are no suspicious dependencies, obfuscation, or indications of malicious intent such as credential theft or unauthorized remote control.
- External report
- View on VirusTotal