Back to skill
Skillv1.0.0
VirusTotal security
Camofox Browser · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
BenignApr 15, 2026, 3:11 AM
- Hash
- b355c775f511844c4879f00cc8c14d759a770b4fd78180499539124465b7f6fa
- Source
- palm
- Verdict
- benign
- Code Insight
- Type: OpenClaw Skill Name: camofox-browser Version: 1.0.0 The camofox-browser bundle is a legitimate and well-architected browser automation server designed for AI agents. It provides high-risk but functional capabilities such as arbitrary JavaScript evaluation (camofox_evaluate), cookie injection for authenticated sessions, and subprocess execution for YouTube transcript extraction (via yt-dlp in lib/youtube.js). These features are aligned with the stated purpose of bypassing bot detection and are protected by security measures including API/Admin key requirements and environment variable whitelisting. The documentation (SKILL.md) explicitly discusses 'Scanner Isolation' techniques to avoid false positives in security scanners by separating sensitive operations (like reading env vars) from network calls, which is implemented cleanly across the codebase (e.g., lib/config.js).
- External report
- View on VirusTotal