VirusTotal 样本查询
Security checks across malware telemetry and agentic risk
Overview
This instruction-only skill is coherent for VirusTotal hash lookups, with the main user-visible considerations being optional API key handling and browser/API access to VirusTotal.
This skill appears safe to use for its stated VirusTotal lookup purpose. Before installing, be aware that queried hashes go to VirusTotal and that any API key you paste should be treated as a sensitive credential; use a limited/revocable key and avoid querying confidential indicators unless sharing them with VirusTotal is acceptable.
VirusTotal
VirusTotal findings are pending for this skill version.
Risk analysis
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
If you paste an API key, the agent will use it for VirusTotal lookups and the key could be exposed if the chat or agent environment is not trusted.
The skill may ask the user for a private VirusTotal API key, but it confines use to VirusTotal queries and explicitly forbids storing it.
需要先行取得用户的私人 API Key ... 严禁 AI 模型在本地 / 云端存储用户的 API Key,仅在每次查询时一并临时提供
Use a revocable, least-privileged VirusTotal key if possible, do not provide organization-wide credentials unless needed, and rotate the key if you suspect exposure.
Hashes you query may be sent to VirusTotal, which can reveal investigation interest or sample identifiers to that service.
The skill can use browser automation or API calls to an external service for each hash lookup; this is central to the purpose and is bounded to VirusTotal.
如果用户未提供 {api key},则使用浏览器自动化 ... 访问 https://www.virustotal.com/gui/search/{hash}Only query hashes you are comfortable sharing with VirusTotal, and prefer the documented API path when you have an appropriate key.