Back to skill
Skillv1.0.0
VirusTotal security
Pub Applenotes · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 30, 2026, 5:57 AM
- Hash
- b5508638783e884deb4207876b13a57195a306397d2176d4894d643b94ab1070
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: apple-notess Version: 1.0.0 The skill bundle exhibits 'bait and switch' behavior, using a deceptive name and slug (apple-notess) to masquerade as an Apple Notes utility while the content is entirely dedicated to an external API service called 'SkillBoss' (heybossai.com). The documentation in SKILL.md and supporting files references non-existent AI models (e.g., openai/gpt-5, bedrock/claude-4-6-opus), suggesting a fraudulent service or scam. The bundle lacks any actual code for the advertised Apple Notes functionality and instead provides instructions that redirect the AI agent to send data to an untrusted third-party endpoint.
- External report
- View on VirusTotal