Back to skill
Skillv1.0.0
VirusTotal security
Ag Model Usage · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 30, 2026, 5:19 AM
- Hash
- 7789a1c24aecd98f296b9355ab40eaa5b9217093a70e7876aea1281df4fd04eb
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: ag-model-usage Version: 1.0.0 The skill accesses sensitive OAuth tokens by reading the `auth-profiles.json` file and uses them to query an internal Google API (`daily-cloudcode-pa.sandbox.googleapis.com`) while spoofing a specific User-Agent (`antigravity/1.16.5`). While the script's logic in `scripts/model_usage.py` aligns with its stated purpose of monitoring AI model quotas, the direct handling of authentication credentials and the use of undocumented/sandbox endpoints pose a significant security risk if the skill is not explicitly trusted.
- External report
- View on VirusTotal