Back to skill
Skillv1.0.0
VirusTotal security
BirdWeather · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
BenignApr 30, 2026, 4:16 AM
- Hash
- 9a383e91ee9cc381419c8d8c796abb202a5df196ce57306c3a026bf284e01504
- Source
- palm
- Verdict
- benign
- Code Insight
- Type: OpenClaw Skill Name: birdweather Version: 1.0.0 The skill bundle is benign. The `SKILL.md` provides clear, non-malicious instructions for querying BirdWeather station data. The `scripts/birdweather.py` script uses `urllib.request` to make HTTP GET requests exclusively to the hardcoded `https://app.birdweather.com/api/v1` endpoint, which is consistent with its stated purpose. There is no evidence of data exfiltration, malicious execution (e.g., shell injection, `eval`), persistence mechanisms, obfuscation, or prompt injection attempts against the agent. All network activity is confined to the legitimate BirdWeather API.
- External report
- View on VirusTotal