Back to skill
Skillv0.1.0
VirusTotal security
Clerk Auth · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
ReviewMay 1, 2026, 3:12 AM
- Hash
- 8f33a77eccfa1f467a30427f5a4a38472451e3068df13d62f88901ddb4e90ea7
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: clerk-auth Version: 0.1.0 The skill is classified as suspicious due to the `agents/clerk-setup.md` file instructing the AI agent to use `grep -r "CLERK" .env*` commands. While the stated purpose is for setup and troubleshooting, this command reads environment variables from `.env` files, which commonly contain sensitive `CLERK_SECRET_KEY` values. This action exposes potentially sensitive credentials to the agent's context, representing a risky capability without clear malicious intent for external exfiltration, but still a significant security concern.
- External report
- View on VirusTotal