Back to skill
Skillv1.0.0
VirusTotal security
Apple Search Ads · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 30, 2026, 4:00 AM
- Hash
- da43af2b3d18897550507b7676c7b0ddceb82373d38e8d50941b77fd6889033e
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: apple-search-ads-skill Version: 1.0.0 The skill is classified as suspicious due to its reliance on executing external shell commands (`asa-cli`) and handling sensitive credentials, specifically the `--private-key-path` argument in the `asa-cli configure` command, as detailed in `SKILL.md`. While these capabilities are necessary for the stated purpose of managing Apple Search Ads, they represent high-risk operations. The direct execution of external commands and interaction with file paths for private keys could be exploited through vulnerabilities in the agent's input sanitization or the `asa-cli` tool itself, even though the skill itself does not explicitly instruct malicious behavior.
- External report
- View on VirusTotal