Back to skill
Skillv1.0.2
VirusTotal security
Data Breach Impact Calculator · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 28, 2026, 5:58 AM
- Hash
- a8ac3b65b8e4f9623830b375a8f8b42b32cfe088690cc65d427ae85039de611e
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: data-breach-impact-calculator Version: 1.0.2 The skill functions as a commercial wrapper for an external API (portal.toolweb.in) and is classified as suspicious due to the use of a raw `curl` command template in SKILL.md. This pattern is inherently vulnerable to shell injection if the AI agent does not properly sanitize user-provided inputs (e.g., 'organizationSize' or 'industry') before execution. Additionally, the instructions contain aggressive steering ('CRITICAL: Always Call the API') designed to bypass the agent's internal knowledge to ensure monetization, and the skill requires transmitting organizational metadata to a third-party service.
- External report
- View on VirusTotal