Back to skill
Skillv1.0.0
VirusTotal security
Amazon Orders · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
BenignApr 30, 2026, 3:38 AM
- Hash
- ce4253c5c6f85f8fba9120535159c75390955f89cb0cc1834e67f66dab58b042
- Source
- palm
- Verdict
- benign
- Code Insight
- Type: OpenClaw Skill Name: amazon-orders Version: 1.0.0 The skill bundle is benign. Its instructions and metadata are clearly aligned with its stated purpose of downloading and querying Amazon order history using the `amazon-orders` Python package. It requires sensitive Amazon credentials (username, password, OTP secret key) via environment variables, which is necessary for its functionality, and it provides good security advice on handling these credentials. There is no evidence of prompt injection against the agent, unauthorized data exfiltration, persistence mechanisms, or other malicious intent within the provided files.
- External report
- View on VirusTotal