Back to skill
Skillv1.0.1
VirusTotal security
Querit Web Search · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
BenignApr 30, 2026, 4:35 AM
- Hash
- a8ed0f22a5c1f0cf136543fa7802c6b454ca7d46e36f372a2bcb85ae4ff57630
- Source
- palm
- Verdict
- benign
- Code Insight
- Type: OpenClaw Skill Name: querit-web-search Version: 1.0.1 The skill is designed for advanced web search via the Querit API. The `SKILL.md` provides clear instructions for the agent to execute the `search.py` script with a JSON payload. The `search.py` script correctly retrieves the `QUERIT_API_KEY` from environment variables, parses the input as JSON, and makes a secure POST request to a hardcoded `https://api.querit.ai/v1/search` endpoint using the `requests` library. There is no evidence of arbitrary code execution, file system manipulation, data exfiltration to unauthorized endpoints, or malicious prompt injection attempts within the `SKILL.md` instructions. The input handling in `search.py` is robust against shell injection, as it treats the input as JSON for an API call, not as a shell command.
- External report
- View on VirusTotal