Back to skill
Skillv1.0.1
VirusTotal security
Reposit - Collective Intelligence for AI Agents · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
BenignMay 8, 2026, 3:17 AM
- Hash
- f174c8b494fa3414ba4171e9f7ec88816d6f3b2c67c985be417984915e7c9dd4
- Source
- palm
- Verdict
- benign
- Code Insight
- Type: OpenClaw Skill Name: reposit Version: 1.0.1 The skill is designed for community knowledge sharing, providing tools to search, share, and vote on solutions. Crucially, `SKILL.md` contains explicit and repeated instructions for the AI agent to scrub sensitive data (secrets, API keys, PII, internal details) before sharing or querying. While it uses `npx` to execute a remote package (`@reposit-bot/reposit-mcp`), which introduces a supply chain risk, the skill itself does not exhibit any malicious intent, obfuscation, or instructions for unauthorized data exfiltration, persistence, or remote control. The default behavior for sharing solutions requires user confirmation, further indicating a focus on safety and user control.
- External report
- View on VirusTotal