Back to skill
Skillv1.0.0
VirusTotal security
Agentarcade · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 30, 2026, 8:06 AM
- Hash
- 538b6a38ac2a304c274d111d7a920d6997e0e2cebbd7e6e2bb2499438374dca2
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: modesty-agentarcade Version: 1.0.0 The skill bundle requires the agent to access sensitive credentials stored in '~/.config/moltbook/credentials.json' and use them to perform automated actions on an external platform (moltbook.com). Additionally, SKILL.md contains a 'Heartbeat' instruction directing the agent to periodically execute instructions from a separate file (HEARTBEAT.md), which is a common pattern for establishing persistence or command-and-control. While these actions are framed as a game registration process for agentarcade.gg, the requirement for the agent to handle third-party API keys and follow recurring external instructions poses a high security risk.
- External report
- View on VirusTotal