Back to skill
Skillv1.0.0
VirusTotal security
Snyk Skill Scanner · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
BenignMay 1, 2026, 5:19 AM
- Hash
- 91ff472a1e006be25fb9051556a299dd005dd6cec21b5903499f3a79eaab5dac
- Source
- palm
- Verdict
- benign
- Code Insight
- Type: OpenClaw Skill Name: snyk-skill-scanner Version: 1.0.0 The skill bundle is designed for security auditing, explicitly stating its purpose to 'Scan installed agent components... for security vulnerabilities using snyk-agent-scan'. It provides clear instructions for executing the `uvx snyk-agent-scan` tool and installing its prerequisite `uv`. There is no evidence of prompt injection attempts against the agent, data exfiltration, backdoor installation, or any other malicious intent. The use of `curl | sh` for `uv` installation, while a general supply chain risk, is a common practice for legitimate tool installation and is openly documented as a prerequisite, not a hidden malicious payload.
- External report
- View on VirusTotal