Back to skill
Skillv1.0.0
VirusTotal security
Xiaomi · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
BenignApr 30, 2026, 3:24 AM
- Hash
- 27b16a2ef01ee8376e6422e5c53e3d7383eb7cb214d625d35134050914884c6b
- Source
- palm
- Verdict
- benign
- Code Insight
- Type: OpenClaw Skill Name: xiaomi Version: 1.0.0 The skill is classified as benign. All described actions, including the installation of `python-miio` via `pipx` and the instruction to run a local `token_extractor.py` script, are directly and transparently aligned with the stated purpose of controlling Xiaomi Home devices locally. There is no evidence of intentional harmful behavior, data exfiltration to external endpoints, or malicious prompt injection attempts against the agent. The use of shell commands for installation and a local script for token acquisition are necessary for the skill's functionality.
- External report
- View on VirusTotal