Back to skill
Skillv0.1.0
VirusTotal security
macos-suite-readonly · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
BenignMay 1, 2026, 5:10 AM
- Hash
- 0e7c8f6cc4391cb9ec2f178088d3d1984f2bd80173277e8c741b50ab2047dd06
- Source
- palm
- Verdict
- benign
- Code Insight
- Type: OpenClaw Skill Name: macos-suite-readonly Version: 0.1.0 The skill is designed for read-only queries on macOS applications (Mail, Calendar, Notes) and stock data. The `SKILL.md` instructions are clear and do not contain any prompt injection attempts. The `scripts/main.py` uses `osascript` for macOS automation, passing user inputs as arguments which are treated as data within the AppleScripts, not executable code, and crucially, none of the AppleScripts use `do shell script`. Network access is strictly allowlisted to `qt.gtimg.cn` for stock quotes, preventing data exfiltration to arbitrary domains. No evidence of credential theft, persistence, or other malicious activities was found.
- External report
- View on VirusTotal