Back to skill
Skillv1.2.0
VirusTotal security
pony-image · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
BenignApr 30, 2026, 4:25 AM
- Hash
- d46a4ce0fb0b2c689588499ed2e065051b87582ec55d5c34e988e940824a3ab8
- Source
- palm
- Verdict
- benign
- Code Insight
- Type: OpenClaw Skill Name: pony-image Version: 1.2.0 The skill bundle is designed for AI image generation, requiring a Supabase API key (`PONY_SUPABASE_ANON_KEY`) for authentication. All network requests are directed to a single, hardcoded Supabase endpoint (`https://vecarpahagopuqbwxbjh.supabase.co/functions/v1`) via standard `curl` commands. There is no evidence of data exfiltration, malicious execution, persistence mechanisms, obfuscation, or prompt injection attempts against the OpenClaw agent within the `SKILL.md` instructions. The instructions are purely functional, guiding the agent on how to interact with the image generation API.
- External report
- View on VirusTotal