Back to skill
Skillv1.0.1
VirusTotal security
TokenDraft · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
BenignApr 30, 2026, 4:27 AM
- Hash
- 87b646eab08c755aa7eeb60ba0103c0948b48826440584da6bb83f899f9089d5
- Source
- palm
- Verdict
- benign
- Code Insight
- Type: OpenClaw Skill Name: tokendraft Version: 1.0.1 The OpenClaw AgentSkills bundle for 'tokendraft' appears benign. All actions, including the handling of the sensitive `SOLANA_PRIVATE_KEY` (which is used for local signing only, not exfiltration), network calls to `tokendraft-production.up.railway.app`, and the creation of `openclaw cron` jobs, are directly aligned with the stated purpose of interacting with a fantasy crypto tournament platform. The instructions within `SKILL.md` and the cron job messages are functional commands for the AI agent to perform the skill's legitimate operations (authentication, tournament management, asset ranking automation) and do not show evidence of malicious intent such as data exfiltration, unauthorized access, or persistence mechanisms beyond the skill's stated functionality.
- External report
- View on VirusTotal