Back to skill
Skillv1.0.0
VirusTotal security
Cookie Consent Banner · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
ReviewApr 30, 2026, 6:18 AM
- Hash
- 406c71f0a2968a8236cc98242c732d60cccd475de70878373fbf6ce1d7316e64
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: cookie-consent-banner Version: 1.0.0 The skill bundle promotes the installation of a specific third-party NPM package, 'orbcafe-ui', which is not a recognized industry-standard library. This pattern is a common vector for supply chain attacks, as the SKILL.md instructions direct the AI agent to execute 'npm install' for an external dependency whose contents are unverified. While no explicitly malicious code is present in the provided files, the primary purpose of the skill appears to be the distribution and execution of this external package.
- External report
- View on VirusTotal