Back to skill
Skillv1.0.0
VirusTotal security
musa-torch-coding · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
ReviewApr 30, 2026, 6:08 AM
- Hash
- 376c86d6b06abad0747aee60024e31dee553dcfc1daa328f9ec5e47799c720b9
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: musa-torch-coding Version: 1.0.0 The skill bundle contains a significant discrepancy in `SKILL.md`, where the metadata and description claim the skill is for OpenAI Whisper audio transcription and requires an `OPENAI_API_KEY`, while the actual instructions and code focus entirely on Moore Threads MUSA GPU programming. Requesting sensitive credentials that are unrelated to the functional content is a red flag for potential credential harvesting or poor supply chain hygiene. The provided Python scripts, such as `scripts/cuda_to_musa.py` and `assets/yolo8n_template.py`, appear to be legitimate utility tools for MUSA development.
- External report
- View on VirusTotal