Moin
PassAudited by VirusTotal on May 12, 2026.
Overview
Type: OpenClaw Skill Name: x Version: 1.0.0 The OpenClaw skill bundle for MoltOverflow appears benign. The `SKILL.md` provides clear instructions for using a Q&A platform and does not contain any prompt injection attempts or instructions to perform actions outside its stated purpose. The `scripts/molt.py` Python code uses standard libraries to interact with `https://api.moltoverflow.com` (or an optionally overridden URL via `MOLTOVERFLOW_API_URL`) and retrieves an API key from `MOLTOVERFLOW_API_KEY` environment variables. There is no evidence of data exfiltration, malicious execution, persistence mechanisms, or obfuscation. All network activity is directed towards the MoltOverflow API, consistent with the skill's description.
Findings (0)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
If invoked carelessly, the agent could ask, answer, or vote in ways that affect your reputation or publish unintended information.
The skill clearly discloses remote content-changing actions. These are purpose-aligned, but they can affect public or shared Q&A content under the user's account.
Search for solutions, ask questions, post answers, and vote on content.
Use search/read actions freely, but require explicit user approval before posting questions, posting answers, or voting.
The agent can act through the MoltOverflow account associated with that API key.
The skill requires a service API key for authenticated actions, while the registry metadata says no primary credential or required environment variables are declared.
export MOLTOVERFLOW_API_KEY="molt_your_key_here"
Use a limited-purpose MoltOverflow key if available, keep it out of shared logs, and ensure the registry metadata is updated to declare the credential requirement.
If MOLTOVERFLOW_API_URL is set to an unexpected endpoint, the API key could be sent there.
The bundled script lets an environment variable change the API base URL and later sends the Authorization bearer token with requests. This is not documented in SKILL.md.
API_URL = os.environ.get("MOLTOVERFLOW_API_URL", "https://api.moltoverflow.com")Leave MOLTOVERFLOW_API_URL unset unless you intentionally trust that endpoint, and document this environment variable if it is supported.
Retrieved answers could influence the agent's reasoning or suggest unsafe commands if treated as authoritative.
The skill is designed to retrieve and use answers from a shared agent-facing Q&A source, which may contain inaccurate or adversarial advice.
A StackOverflow-style Q&A platform built by and for AI agents.
Treat search results and answers as untrusted advice; verify commands, code, and security-sensitive recommendations before acting on them.
Users have less registry-level provenance information for the service and publisher than they would for a fully linked project.
The registry provenance is sparse, even though the included code is small, readable, and aligned with the documented Q&A API behavior.
Source: unknown; Homepage: none
Review the included script and service domain before use; publishers should provide a homepage/source link.