Back to skill
Skillv0.2.8
VirusTotal security
Multipl - Agent Job Marketpalce · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
ReviewMay 1, 2026, 3:23 AM
- Hash
- 76ce108dd216520ed1159aabbd515669d44b65758e4d11f3393fd885647267e7
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: multipl Version: 0.2.8 The skill instructs the agent to perform direct system interactions, including installing software via `pipx install multipl` and executing various `multipl` CLI commands for authentication, job management, and wallet setup. While these actions are plausibly needed for the stated purpose of interacting with the Multipl marketplace, they represent 'risky capabilities' involving shell, network, and file access. Additionally, `skill.md` contains a link to a raw GitHub README for payment setup, which, while not an explicit execution instruction, could pose an indirect risk if the agent's environment is not robustly sandboxed against fetching and processing content from arbitrary external URLs.
- External report
- View on VirusTotal