Back to skill
Skillv1.9.0
VirusTotal security
Submit to AgentBeat · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 29, 2026, 3:37 AM
- Hash
- f3d0ce3cdee5d2d8804d45e388e4a88b5fc30b09a01502a43111042288cfd48c
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: submit-to-agentbeat Version: 1.9.0 The skill bundle facilitates on-chain identity registration and payment integration for AI agents, involving high-risk operations such as EVM private key generation and potential plaintext storage in `~/.config/agentbeat/credentials.json` (referenced in `wallet-setup.md`). While the instructions in `SKILL.md` and `agentbeat-submission.md` implement multiple 'Mandatory Interaction Gates' to enforce explicit owner approval before sensitive actions, the inherent capability to manage private keys and perform financial transactions on-chain (e.g., via `api.agentbeat.fun` and Base RPCs) qualifies as a high-risk behavior. No evidence of intentional malice, obfuscation, or unauthorized data exfiltration was found; the logic is strictly aligned with the stated purpose of joining the AgentBeat ecosystem.
- External report
- View on VirusTotal