Back to skill
Skillv3.2.7
VirusTotal security
Intranet · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
BenignMay 1, 2026, 3:57 AM
- Hash
- 409fc1fb0f5178fa6aef2f856a309a9efce1d49bfd58163477ae33c2fee3d43c
- Source
- palm
- Verdict
- benign
- Code Insight
- Type: OpenClaw Skill Name: intranet Version: 3.2.7 The bundle implements a local HTTP server ('intranet') with CGI and plugin support. It features robust security controls including path traversal protection via path resolution, mandatory token authentication for non-loopback bindings, host allowlisting, and SHA-256 hash verification for plugin-based CGI scripts (scripts/intranet_web.py). The code is well-structured, lacks obfuscation, and its high-risk capabilities (CGI execution) are explicitly controlled, restricted to 'index.py' files, and aligned with the stated purpose.
- External report
- View on VirusTotal