Back to skill
Skillv1.0.4
VirusTotal security
Agenthub · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 30, 2026, 5:00 AM
- Hash
- a59954c306781343bca147f05d3b3b8cd8e3d19c167178ca5be8022af128df69
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: rwagenthub Version: 1.0.4 The skill requires the user to provide a raw blockchain private key (AGENTHUB_WALLET_KEY) to an external SDK (rwagenthub-sdk) for micropayments via the x402 protocol. This pattern is inherently high-risk as the SDK could potentially exfiltrate the credential to the gateway (agents-production-73c1.up.railway.app). Additionally, the skill provides access to high-risk capabilities such as remote code execution (code_exec) and email dispatch (email_send) through a third-party API provider.
- External report
- View on VirusTotal