Back to skill
Skillv0.1.0
VirusTotal security
Renderful Generation · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 30, 2026, 3:46 AM
- Hash
- bd05fde00049d89647dfe86724a13e6348583790f48f453d5b64ca76c6c320ad
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: renderful-generation Version: 0.1.0 The skill bundle is classified as suspicious due to the inclusion of the `renderful_set_webhook` tool in `SKILL.md`. While webhooks are a legitimate feature, exposing this capability to an AI agent without explicit internal safeguards creates a significant prompt-injection vulnerability. A malicious prompt could instruct the agent to set a webhook to an attacker-controlled URL, potentially leading to data exfiltration or unauthorized communication, even though the provided `SKILL.md` does not explicitly instruct the agent to perform malicious actions.
- External report
- View on VirusTotal