Back to skill
Skillv1.0.1
VirusTotal security
Token Estimator · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
BenignApr 30, 2026, 4:29 AM
- Hash
- 47ac335efa3dc063010ef938f488f8c4453e3075d7ba27710bbe33bc93edfb05
- Source
- palm
- Verdict
- benign
- Code Insight
- Type: OpenClaw Skill Name: token-estimator Version: 1.0.1 The OpenClaw skill 'token-estimator' is classified as benign. The `SKILL.md` provides clear, descriptive instructions without any evidence of prompt injection attempts against the AI agent. The core script `scripts/token-estimator.py` uses standard libraries (`tiktoken`, `transformers`, `dashscope`) for its stated purpose of estimating token consumption. While `transformers.AutoTokenizer.from_pretrained` involves downloading model data from external sources, this is a standard and expected behavior for the library and is not indicative of malicious intent from the skill itself. The code explicitly avoids file system manipulation, environment variable access, shell execution, and data exfiltration, aligning with the '安全机制' (security mechanism) claims in the documentation.
- External report
- View on VirusTotal