Back to skill
Skillv1.0.0
VirusTotal security
Humanizer · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 30, 2026, 4:38 AM
- Hash
- 1e3e720b987c966177cd0375dd7d9f63aee9e9344878101f9fca54ecceb00eec
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: irisgo-humanizer Version: 1.0.0 The skill is classified as suspicious due to the broad file system permissions requested in `SKILL.md`'s `allowed-tools` section, specifically `Read`, `Write`, `Edit`, `Grep`, and `Glob`. While these tools could be plausibly used for the skill's stated purpose of text humanization (e.g., reading an input file and writing an output file), granting such extensive file system access introduces a significant attack surface. If the OpenClaw agent or platform were vulnerable to user-supplied prompt injection, these permissions could be exploited to read sensitive files, modify arbitrary content, or exfiltrate data, even though the skill's own instructions do not explicitly direct such malicious actions.
- External report
- View on VirusTotal