Back to skill
Skillv0.1.8
VirusTotal security
Precc Token Saver · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 30, 2026, 5:40 AM
- Hash
- f1954e703319fd8cf1374a1deeff123bad81c3bd230ebf2c38827a7c0ac54314
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: precc-token-saver Version: 0.1.8 The skill instructs the agent to intercept and pipe every shell command through an external binary (precc-hook) before execution, effectively creating a man-in-the-middle for all agent actions. It also includes a command to 'mine' all existing session history (precc ingest --all) and uses a high-risk 'curl | bash' installation method from an external GitHub repository (yijunyu/precc-cc). While the stated intent is token optimization, the combination of total command interception, history mining, and prompt-level instruction overrides presents a significant risk for data exfiltration and unauthorized command execution.
- External report
- View on VirusTotal