Back to skill
Skillv1.0.1
VirusTotal security
Hybrid training plan · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
BenignApr 30, 2026, 4:41 AM
- Hash
- 573007bf5ecc7f0ffc89a547e790ee40854a0608e2be5af27d9871d0138f6c0f
- Source
- palm
- Verdict
- benign
- Code Insight
- Type: OpenClaw Skill Name: hybrid-training-plan Version: 1.0.1 The skill bundle is benign. It provides a CLI adapter (`scripts/htp.sh`) to interact with the `hybridtrainingplan.app` API, as described in `SKILL.md` and `references/api.md`. The script uses `curl` and `jq` to make authenticated API calls, correctly handling an API key from environment variables. It employs robust shell scripting practices, including `set -euo pipefail` and proper quoting of arguments (`"$var"`, `jq --arg`), which prevents shell injection vulnerabilities within the script itself. There is no evidence of intentional harmful behavior, data exfiltration to unauthorized endpoints, persistence mechanisms, or obfuscation. The functionality is clearly aligned with its stated purpose.
- External report
- View on VirusTotal