Back to skill
Skillv1.0.0
VirusTotal security
TreeListy · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
BenignMay 1, 2026, 3:21 AM
- Hash
- 73a7fd9ef789e579fcd9cc1bf33b9a0ee35fa8cec19dd6e7e0d9afa437c671ed
- Source
- palm
- Verdict
- benign
- Code Insight
- Type: OpenClaw Skill Name: treelisty-openclaw-skill Version: 1.0.0 The OpenClaw AgentSkills skill bundle is classified as benign. The skill's core functionality involves local text processing and hierarchical data structuring using Node.js scripts. The only network activity identified is an optional `push` command in `scripts/push.js` and `scripts/treelisty-cli.js`, which establishes a WebSocket connection to `localhost:3456`. This connection is explicitly for integrating with a local companion application (TreeListy's visual canvas) and is clearly documented in `SKILL.md` and `README.md`. There is no evidence of data exfiltration to external endpoints, malicious execution, persistence mechanisms, obfuscation, or prompt injection attempts against the agent. All operations are local and align with the stated purpose of hierarchical project decomposition.
- External report
- View on VirusTotal