Back to skill
Skillv1.0.0
VirusTotal security
captcha-login-assistant · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
ReviewApr 30, 2026, 6:26 AM
- Hash
- f109fe0b58f5ea87c2bc35903019df4eec3ecbcd2301d6457758f2891883c0ae
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: captcha-login-assistant Version: 1.0.0 This skill automates the process of logging into websites by bypassing CAPTCHA using Chrome DevTools MCP and AI vision. It utilizes high-risk functions like `mcp_chrome-devtools-mcp_evaluate_script` in `SKILL.md` to programmatically inject usernames and passwords into web forms. While the stated purpose is a 'login assistant,' the ability to automate security bypasses and handle raw credentials programmatically presents a significant risk for misuse, such as automated account access or credential stuffing, despite lacking explicit evidence of data exfiltration.
- External report
- View on VirusTotal