Back to skill
Skillv1.0.1
VirusTotal security
Jackal Skill · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
BenignApr 30, 2026, 4:43 AM
- Hash
- 325139a5fde2d0a903a1bcd6afd87e86505cfd854dc39701f25a37ac40162bc5
- Source
- palm
- Verdict
- benign
- Code Insight
- Type: OpenClaw Skill Name: jackal-skill Version: 1.0.1 The skill provides client-side encrypted memory storage for AI agents, a legitimate and useful function. The implementation uses strong AES-256-GCM encryption with securely managed keys and standard `urllib.request` for API communication. The `SKILL.md` instructions guide the agent on proper usage and explicitly advise against logging sensitive keys, demonstrating security-conscious design rather than prompt injection. There is no evidence of intentional harmful behavior such as data exfiltration, malicious execution, persistence, or obfuscation. Potential vulnerabilities related to input handling (e.g., URL path for keys) or output processing (decrypted content to stdout) are not indicative of malicious intent within the skill itself, but rather potential weaknesses in the broader system's interaction with the skill.
- External report
- View on VirusTotal