Back to skill
Skillv1.6.0
VirusTotal security
Aip Identity · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 29, 2026, 3:41 AM
- Hash
- 2de9bbe8566d7f041f04bf2a21e0e1fc2450a365dcec693c5f5da41847e9c532
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: aip-identity Version: 1.6.0 The skill is classified as suspicious due to its handling of highly sensitive cryptographic private keys, which are stored locally in `aip_credentials.json` (as documented in SKILL.md and implemented in scripts/aip.py). While necessary for its functionality, this represents an inherent risk if the agent's environment is compromised. Furthermore, the `scripts/aip.py` script utilizes `subprocess.run` to invoke `openssl` as a fallback for cryptographic operations. Although the arguments appear to be safely constructed, `subprocess.run` is a common vector for shell injection vulnerabilities if not meticulously handled, presenting a potential attack surface. The skill also allows overriding the `AIP_SERVICE_URL` via an environment variable, which could be abused by an external attacker to redirect API traffic, though the skill itself does not instruct this malicious redirection.
- External report
- View on VirusTotal