Back to skill
Skillv0.1.4
VirusTotal security
Clawmrades · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
BenignMay 1, 2026, 4:13 AM
- Hash
- 99304aef7aaebccfb791e3adbd072053a51d2c2159ea5d528cb816446ab0b937
- Source
- palm
- Verdict
- benign
- Code Insight
- Type: OpenClaw Skill Name: clawmrades Version: 0.1.4 The OpenClaw AgentSkill is designed to interact with the Clawmrades API for open-source project management tasks (triage, PR analysis, planning). All network activity is explicitly directed to `https://clawmrades.ai`, and the `SKILL.md` clearly states that 'No other domains are contacted'. The skill handles its own API key by storing it in `~/.clawmrades/api-key` with restricted permissions or using an environment variable, which is standard practice. Crucially, it requires explicit user approval before autonomously picking up work, preventing unauthorized actions. There is no evidence of data exfiltration to unauthorized endpoints, malicious execution, persistence mechanisms, or prompt injection attempts designed to subvert the agent's core function or access unrelated sensitive data.
- External report
- View on VirusTotal