Back to skill
Skillv1.0.3
VirusTotal security
Launchthatbot Convex Backend · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
BenignApr 30, 2026, 4:34 AM
- Hash
- c1d58eb5baf169c17e381b13249c103336632c0eaf940f4848afa65f4ef15849
- Source
- palm
- Verdict
- benign
- Code Insight
- Type: OpenClaw Skill Name: launchthatbot-convex-backend Version: 1.0.3 This skill is designed to enhance agent security and persistence by migrating secrets and long-term memory from local files to a user-controlled Convex backend. The `SKILL.md` and `README.md` contain explicit instructions for the AI agent to follow strong security practices, such as never storing the `CONVEX_DEPLOY_KEY` in Convex, using Convex environment variables for other secrets, and requiring explicit user confirmation for `.env` file modifications during migration. While the skill involves reading and modifying local `.env` files and executing `npx` commands (e.g., `npx -y mcporter`, `npx -y convex@latest deploy`), these actions are integral to its stated purpose and are accompanied by robust guardrails, user consent requirements, and clear intent to secure data within the user's Convex instance, not exfiltrate it. No evidence of intentional harmful behavior, obfuscation, or unauthorized data exfiltration was found.
- External report
- View on VirusTotal