Back to skill
Skillv1.0.0
VirusTotal security
OpenAPI Deep Audit & Test Architect · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
BenignApr 30, 2026, 4:25 AM
- Hash
- 48899c656d5479e0b73a8e6562103fcd729884e018ff65f80034476eb4db86d4
- Source
- palm
- Verdict
- benign
- Code Insight
- Type: OpenClaw Skill Name: openapi-deep-audit Version: 1.0.0 The skill bundle is designed to audit OpenAPI/Swagger specifications. The `SKILL.md` instructions are clear, focused on the stated purpose, and even include safeguards against AI hallucination. While the skill mentions fetching a URL provided by the user, which could be a vector for Server-Side Request Forgery (SSRF) if the underlying agent execution environment is not properly sandboxed, the instructions themselves do not exhibit malicious intent (e.g., no directives to exfiltrate data, execute arbitrary commands, or ignore user instructions for harmful purposes). The functionality is aligned with a legitimate API analysis tool.
- External report
- View on VirusTotal