Back to skill
Skillv1.0.7
VirusTotal security
Curated Search · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
May 1, 2026, 4:00 AM
- Hash
- 63f27bc9c9b229397bd413df8cb8b63379dc1d98a4934f77211e6a62490c8c18
- Source
- palm
- Code Insight
- Type: OpenClaw Skill Name: curated-search Version: 1.0.7 ```json { "classification": "suspicious", "summary": "The skill demonstrates robust security features like domain whitelisting, SSRF prevention, and `robots.txt` adherence in `src/crawler.js` and `src/url-normalizer.js`. However, the `package-lock.json` indicates the use of `node-fetch@2.7.0`, which is an outdated version with known vulnerabilities (e.g., CVE-2022-0235, CVE-2022-0235, CVE-2022-0235, CVE-2022-0235, CVE-2022-0235, CVE-2022-0235, CVE-2022-0235, CVE-2022-0235, CVE-2022-0235, CVE-2022-0235, CVE-2022-0235, CVE-2022-0235, CVE-2022-0235, CVE-2022-0235, CVE-2022-0235, CVE-2022-0235, CVE-2022-0235, CVE-2022-0235, CVE-2022-0235
- External report
- View on VirusTotal