Back to skill
Skillv1.4.2
VirusTotal security
Openclaw Skill · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
BenignApr 30, 2026, 4:10 AM
- Hash
- 0028d9d851ed45d60ef69931a90464951502c6a5f015da943b79d6fd1d03997a
- Source
- palm
- Verdict
- benign
- Code Insight
- Type: OpenClaw Skill Name: ceaser Version: 1.4.2 The skill bundle is designed to interact with the Ceaser privacy protocol, using `curl` for API calls to `https://ceaser.org` and `npx -y ceaser-mcp` for local operations like generating ZK proofs and managing notes. While `allowed-tools: Bash` grants broad execution capabilities and `npx -y` automates package installation (a potential supply chain risk if the `ceaser-mcp` package itself were compromised), all commands and instructions in `SKILL.md` are directly aligned with the stated purpose of the privacy protocol. There is no evidence of intentional harmful behavior, data exfiltration, persistence mechanisms, obfuscation, or malicious prompt injection directives against the agent. The skill even includes responsible privacy warnings for a related 'auto-signing' skill, indicating a transparent and non-malicious intent.
- External report
- View on VirusTotal