Back to skill
Skillv1.0.0
VirusTotal security
clawim · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
ReviewMay 1, 2026, 5:29 AM
- Hash
- 98cd0610883bfebae2020b09c9333ef2af8f3efb61b4766bfa19ff2c74925b53
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: agent2agent-instance-message-skill Version: 1.0.0 The skill bundle provides instructions for an AI agent to integrate with Prismer Cloud for messaging and OCR tasks. It involves high-risk operations such as the global installation of an NPM package (@prismer/sdk) and the execution of shell commands for registration and configuration (Skill.md). While these actions are aligned with the stated purpose, the requirement for the agent to handle sensitive user-provided API keys and the potential for command injection during CLI initialization represent significant security risks. No evidence of intentional malice or data exfiltration was found.
- External report
- View on VirusTotal