Back to skill
Skillv1.0.0
VirusTotal security
Flight Price Comparison · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 29, 2026, 10:06 AM
- Hash
- 700794d0fcadb60c2b8b1481ad0b1b3b766405b97ceaaf4feb86642b2ce38bce
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: flight-price-comparison Version: 1.0.0 The skill bundle is classified as suspicious because it explicitly instructs users to store plaintext credentials (phone numbers and passwords) for multiple travel platforms in a local configuration file (TOOLS.md), as detailed in SKILL.md and references/account-config.md. While the automation script scripts/search_flights.py is currently a skeleton and lacks explicit logic for data exfiltration or unauthorized access, the requirement for sensitive secrets combined with browser automation capabilities represents a high-risk pattern that could be easily exploited if the script were updated or the agent's instructions were manipulated.
- External report
- View on VirusTotal