Back to skill
Skillv1.0.0
VirusTotal security
QuorumAI · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
BenignApr 30, 2026, 4:51 AM
- Hash
- 596a6629f510021e5b9ff8660c132f18663ec58914e2a8f4f3ceafa195bd81bc
- Source
- palm
- Verdict
- benign
- Code Insight
- Type: OpenClaw Skill Name: quorumai Version: 1.0.0 The OpenClaw skill bundle is benign. It clearly defines an API integration with quorumai.io, using standard `curl` commands to send user questions and an API key. There is no evidence of intentional malicious behavior, data exfiltration to unauthorized endpoints, persistence mechanisms, or obfuscation. While the `USER_QUESTION_HERE` placeholder in `SKILL.md` could theoretically be a vector for JSON injection if the OpenClaw agent fails to properly sanitize user input, this represents a potential vulnerability in the agent's execution environment rather than malicious intent within the skill's instructions themselves. The instructions are transparent and align with the stated purpose of interacting with the QuorumAI API.
- External report
- View on VirusTotal