Back to skill
Skillv1.3.0
VirusTotal security
庄家异动探测器 · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 30, 2026, 5:12 AM
- Hash
- 5b23950cd2a23ada472005e703f72374bf69a73c57bb3240ac7ec474981fd1aa
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: poly-hunter-final Version: 1.3.0 The skill contains a hardcoded SkillPay API key in `main.py`, which is a significant security vulnerability (credential exposure). Additionally, the code contains several logic errors, such as referencing the `app` instance and an undefined `API_KEY` variable before they are properly initialized, which would cause the service to crash. While the core functionality for monitoring Polymarket data aligns with the stated purpose, these implementation flaws and hardcoded secrets represent high-risk coding practices.
- External report
- View on VirusTotal