Back to skill
Skillv1.0.0
VirusTotal security
Identity Persistence Layer · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
BenignApr 30, 2026, 4:30 AM
- Hash
- 25be9faad42972e6bf8ca8fff4eaeafa012cc5eee7f57e9cd70cf26fccbd9c18
- Source
- palm
- Verdict
- benign
- Code Insight
- Type: OpenClaw Skill Name: identity-persistence Version: 1.0.0 The skill 'identity-persistence' is designed to synthesize an AI agent's identity from its internal markdown files (e.g., SOUL.md, MEMORY.md) using the Gemini API. It reads the Google API key from the agent's auth profiles and sends the agent's internal state to the Gemini API for processing, storing the structured identity locally. All file access, network communication, and sensitive data handling (API key) are directly aligned with the skill's stated purpose. While processing agent-controlled markdown files with an LLM introduces a theoretical risk of internal prompt injection against the Gemini model, the code includes strong guardrails by explicitly instructing Gemini to output only valid JSON according to a strict schema and robustly parsing the response, preventing arbitrary code execution or direct exfiltration by the skill itself. There is no evidence of intentional harmful behavior, data exfiltration to unauthorized endpoints, persistence mechanisms, or malicious prompt injection against the OpenClaw agent.
- External report
- View on VirusTotal