Back to skill
Skillv1.0.3
VirusTotal security
Unifi Inforjota Integration · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
ReviewMar 24, 2026, 8:51 AM
- Hash
- 1cba346970b5a807932572efc7cbaf0d7aee8bbb73d53f144b6d6539a3a4bbd2
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: unifi-inforjota-integration Version: 1.0.3 The UniFi integration bundle is classified as suspicious due to several security vulnerabilities and documentation inconsistencies. All scripts (e.g., unifi-api.sh, clients.sh, dashboard.sh) systematically utilize 'curl -k' to bypass SSL verification, which exposes the UniFi API key (X-API-KEY) to potential interception via Man-in-the-Middle attacks. Additionally, scripts such as alerts.sh and top-apps.sh lack input validation for user-supplied arguments like the LIMIT parameter, and the README.md contains conflicting information regarding authentication methods (referencing username/password and cookies while the code uses API keys), indicating a high risk of misconfiguration or insecure deployment.
- External report
- View on VirusTotal