Back to skill
Skillv2.1.2
VirusTotal security
Claw Recall · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 30, 2026, 5:27 AM
- Hash
- 22a5a3015a7f870676527466c855bb7ab09f462e1db925c0a48328e4ebfe215f
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: claw-recall Version: 2.1.2 The skill bundle describes a tool designed to index and search highly sensitive personal data, including Gmail, Google Drive, and Slack, which represents a significant security and privacy risk (SKILL.md). While the stated purpose is context recovery, the installation process requires cloning an external repository and executing arbitrary Python code, and the metadata contains an anomalous future-dated publication timestamp (March 2026 in _meta.json). The instructions also include behavioral nudges for the AI agent to prioritize these tools immediately after context loss, increasing the potential impact if the underlying external code is compromised.
- External report
- View on VirusTotal