Back to skill
Skillv1.0.0
VirusTotal security
Lead Enricher - Explorium AgentSource · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
BenignApr 30, 2026, 4:48 AM
- Hash
- 8648ed0976cf8470caab41ccc9153957b185e0b715231d98b5b556ee51eab5fe
- Source
- palm
- Verdict
- benign
- Code Insight
- Type: OpenClaw Skill Name: lead-enricher-explorium-agentsource Version: 1.0.0 The skill bundle is benign. The `setup.sh` script performs a standard local installation, securely handling the API key with `chmod 600`. The `bin/agentsource.py` CLI tool is a well-structured Python application that interacts with a declared external API (`https://api.explorium.ai/v1/`), processes inputs as data (using `json.loads` safely), and writes results to temporary files in `/tmp/`. Crucially, the `SKILL.md` (AI agent instructions) includes explicit security and privacy safeguards, such as instructing the agent *not* to ask for API keys in chat, requiring user consent for `call_reasoning` (sending query text), and mandating user confirmation before performing large data fetches or exports. There is no evidence of intentional harmful behavior, unauthorized data exfiltration, or malicious prompt injection attempts against the agent.
- External report
- View on VirusTotal