Back to skill
Skillv1.0.0
VirusTotal security
External Ki Integration Backup · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 30, 2026, 4:22 AM
- Hash
- 9ddfea0f4a70d6c6954669e6fd5d9dcac42fde522acd54d6a96448853c570c19
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: external-ki-integration-backup Version: 1.0.0 The skill is classified as suspicious due to the broad capabilities it grants the AI agent, which, while necessary for its stated purpose, introduce significant vulnerabilities. Specifically, the `SKILL.md` instructs the agent to make arbitrary external network requests using `curl` (e.g., to `api.openai.com`, `api.anthropic.com`), access environment variables for API keys, and perform extensive browser automation via the `browser` tool. While the examples provided are for legitimate AI services, these capabilities could be exploited via prompt injection to exfiltrate sensitive data, interact with arbitrary web pages, or make unauthorized network calls to malicious endpoints, despite the skill's own safety instructions.
- External report
- View on VirusTotal