Back to skill
Skillv2.0.0
VirusTotal security
Planet Express Marketplace · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
ReviewMay 1, 2026, 4:07 AM
- Hash
- 1ab3339adeca765347f0b24672ab6cb84aeb0fea7568036205ab9793e5652a77
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: planetexpress-marketplace Version: 2.0.0 The skill is classified as suspicious due to its declared high-risk capabilities, even though there is no direct evidence of malicious intent within the provided files. It explicitly requests 'network' permissions in `claw.json` and describes interactions with an external API (`https://dropclaw.cloud`) in `SKILL.md`. Furthermore, `SKILL.md` details a cryptocurrency payment flow (x402 protocol) for buying and listing files, implying the agent might be involved in initiating or confirming transactions. The `skillFileUri` parameter in the listing API and the mention of a 'skill file for decryption' in the purchase flow (both in `SKILL.md`) introduce a potential remote code execution (RCE) vulnerability if the agent is designed to fetch and execute arbitrary code from IPFS for decryption without proper sandboxing.
- External report
- View on VirusTotal