Back to skill
Skillv1.0.2
VirusTotal security
voice-email · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
BenignMay 1, 2026, 4:22 AM
- Hash
- 1b319799f5972188ae732578bd20f29ade4ca1860a0477d0e457d727b301d146
- Source
- palm
- Verdict
- benign
- Code Insight
- Type: OpenClaw Skill Name: voice-email Version: 1.0.2 The 'voice-email' skill bundle is designed to send emails via voice commands, leveraging Deepgram for transcription and gogcli for Gmail. It explicitly declares necessary permissions like 'network', 'file_access', and 'modify_config', along with required credentials. While these permissions are high-risk, they are clearly aligned with the skill's stated purpose. The documentation (SKILL.md, SETUP.md) transparently outlines its functionality, prerequisites, and security considerations, including explicit statements about what the skill 'CANNOT Do' (e.g., execute arbitrary code, access unrelated files). There is no evidence of prompt injection attempts, data exfiltration to unauthorized endpoints, or other malicious intent. The instructions for installing `gogcli` are directed at the user, not the agent, and the testing commands use legitimate API endpoints.
- External report
- View on VirusTotal