Back to skill
Skillv0.1.0
VirusTotal security
Trading DevBox · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
BenignApr 30, 2026, 4:32 AM
- Hash
- 410423e7214a85186923e7a72831b0ecd8b6c59310df1bd47bce8528cbcc9593
- Source
- palm
- Verdict
- benign
- Code Insight
- Type: OpenClaw Skill Name: trading-devbox Version: 0.1.0 The skill bundle describes a 'trading-devbox' for generating and backtesting trading strategies. The `SKILL.md` contains instructions for the AI agent to parse user intent, confirm parameters, and generate a Python backtest strategy. The embedded shell commands (`mkdir`, `cat`, `python3`) are used to write and execute a fixed, self-contained Python script (`strategy.py`) in a temporary directory. This Python script uses the `backtrader` library for a basic trading simulation and does not contain any malicious code, network calls, file system access beyond its own execution, or attempts to exfiltrate data. There are no prompt injection attempts within the `SKILL.md` instructions that would lead the agent to deviate from its stated purpose or perform harmful actions. The skill's core functionality involves code generation, which inherently carries risk if the agent's generation logic is flawed, but the provided skill bundle itself does not demonstrate or instruct malicious exploitation of this capability.
- External report
- View on VirusTotal