Crawler Summary
Crawled blog.virustotal.com f5e9b87a answer-first brief
stand what the skill claims to do, but to summarize what it actually does from a security perspective: whether it downloads and executes external code, accesses sensitive data, performs network operations, or embeds i... stand what the skill claims to do, but to summarize what it actually does from a security perspective: whether it downloads and executes external code, accesses sensitive data, performs network operations, or embeds instructions that could coerce the agent into unsafe behavior. In practice, this gives analysts a concise, security-first description of the real behavior of a skill, making it much easier to spot malicio Capability contract not published. No trust telemetry is available yet. Last updated 4/14/2026.
Freshness
Last checked 3/14/2026
Best For
Crawled blog.virustotal.com f5e9b87a is best for general automation workflows where documented compatibility matters.
Not Ideal For
Contract metadata is missing or unavailable for deterministic execution.
Evidence Sources Checked
editorial-content, GITHUB REPOS, runtime-metrics, public facts pack
Crawled blog.virustotal.com f5e9b87a
stand what the skill claims to do, but to summarize what it actually does from a security perspective: whether it downloads and executes external code, accesses sensitive data, performs network operations, or embeds i... stand what the skill claims to do, but to summarize what it actually does from a security perspective: whether it downloads and executes external code, accesses sensitive data, performs network operations, or embeds instructions that could coerce the agent into unsafe behavior. In practice, this gives analysts a concise, security-first description of the real behavior of a skill, making it much easier to spot malicio
Public facts
3
Change events
1
Artifacts
0
Freshness
Mar 14, 2026
Capability contract not published. No trust telemetry is available yet. Last updated 4/14/2026.
Trust score
Unknown
Compatibility
Profile only
Freshness
Mar 14, 2026
Vendor
Virustotal
Artifacts
0
Benchmarks
0
Last release
Unpublished
Executive Summary
Key links, install path, and a quick operational read before the deeper crawl record.
Summary
Capability contract not published. No trust telemetry is available yet. Last updated 4/14/2026.
Setup snapshot
- 1
Setup complexity is MEDIUM. Standard integration tests and API key provisioning are required before connecting this to production workloads.
- 2
Final validation: Expose the agent to a mock request payload inside a sandbox and trace the network egress before allowing access to real customer data.
Evidence Ledger
Everything public we have scraped or crawled about this agent, grouped by evidence type with provenance.
Vendor (1)
Vendor
Virustotal
Security (1)
Handshake status
UNKNOWN
Integration (1)
Crawlable docs
6 indexed pages on the official domain
Release & Crawl Timeline
Merged public release, docs, artifact, benchmark, pricing, and trust refresh events.
Artifacts Archive
Extracted files, examples, snippets, parameters, dependencies, permissions, and artifact metadata.
Extracted files
0
Examples
0
Snippets
0
Languages
Unknown
Docs & README
Full documentation captured from public sources, including the complete README when available.
Docs source
GITHUB REPOS
Editorial quality
ready
stand what the skill claims to do, but to summarize what it actually does from a security perspective: whether it downloads and executes external code, accesses sensitive data, performs network operations, or embeds i... stand what the skill claims to do, but to summarize what it actually does from a security perspective: whether it downloads and executes external code, accesses sensitive data, performs network operations, or embeds instructions that could coerce the agent into unsafe behavior. In practice, this gives analysts a concise, security-first description of the real behavior of a skill, making it much easier to spot malicio
Full README
stand what the skill claims to do, but to summarize what it actually does from a security perspective: whether it downloads and executes external code, accesses sensitive data, performs network operations, or embeds instructions that could coerce the agent into unsafe behavior. In practice, this gives analysts a concise, security-first description of the real behavior of a skill, making it much easier to spot malicious patterns hidden behind “helpful” functionality. What we’re seeing in the wild At the time of writing, VirusTotal Code Insight has already analyzed more than 3,016 OpenClaw skills, and hundreds of them show malicious characteristics. Not all of these cases are the same. On one side, we are seeing many skills flagged as dangerous because they contain poor security practices or outright vulnerabilities: insecure use of APIs, unsafe command execution, hardcod
Contract & API
Machine endpoints, protocol fit, contract coverage, invocation examples, and guardrails for agent-to-agent use.
Contract coverage
Status
missing
Auth
None
Streaming
No
Data region
Unspecified
Protocol support
Requires: none
Forbidden: none
Guardrails
Operational confidence: low
Invocation examples
curl -s "https://xpersona.co/api/v1/agents/crawl-a029d1d1d6d7d6979de2-f5e9b87a63ad7645ec3f/snapshot"
curl -s "https://xpersona.co/api/v1/agents/crawl-a029d1d1d6d7d6979de2-f5e9b87a63ad7645ec3f/contract"
curl -s "https://xpersona.co/api/v1/agents/crawl-a029d1d1d6d7d6979de2-f5e9b87a63ad7645ec3f/trust"
Reliability & Benchmarks
Trust and runtime signals, benchmark suites, failure patterns, and practical risk constraints.
Trust signals
Handshake
UNKNOWN
Confidence
unknown
Attempts 30d
unknown
Fallback rate
unknown
Runtime metrics
Observed P50
unknown
Observed P95
unknown
Rate limit
unknown
Estimated cost
unknown
Do not use if
Media & Demo
Every public screenshot, visual asset, demo link, and owner-provided destination tied to this agent.
Related Agents
Neighboring agents from the same protocol and source ecosystem for comparison and shortlist building.
Machine Appendix
Contract JSON
{
"contractStatus": "missing",
"authModes": [],
"requires": [],
"forbidden": [],
"supportsMcp": false,
"supportsA2a": false,
"supportsStreaming": false,
"inputSchemaRef": null,
"outputSchemaRef": null,
"dataRegion": null,
"contractUpdatedAt": null,
"sourceUpdatedAt": null,
"freshnessSeconds": null
}Invocation Guide
{
"preferredApi": {
"snapshotUrl": "https://xpersona.co/api/v1/agents/crawl-a029d1d1d6d7d6979de2-f5e9b87a63ad7645ec3f/snapshot",
"contractUrl": "https://xpersona.co/api/v1/agents/crawl-a029d1d1d6d7d6979de2-f5e9b87a63ad7645ec3f/contract",
"trustUrl": "https://xpersona.co/api/v1/agents/crawl-a029d1d1d6d7d6979de2-f5e9b87a63ad7645ec3f/trust"
},
"curlExamples": [
"curl -s \"https://xpersona.co/api/v1/agents/crawl-a029d1d1d6d7d6979de2-f5e9b87a63ad7645ec3f/snapshot\"",
"curl -s \"https://xpersona.co/api/v1/agents/crawl-a029d1d1d6d7d6979de2-f5e9b87a63ad7645ec3f/contract\"",
"curl -s \"https://xpersona.co/api/v1/agents/crawl-a029d1d1d6d7d6979de2-f5e9b87a63ad7645ec3f/trust\""
],
"jsonRequestTemplate": {
"query": "summarize this repo",
"constraints": {
"maxLatencyMs": 2000,
"protocolPreference": []
}
},
"jsonResponseTemplate": {
"ok": true,
"result": {
"summary": "...",
"confidence": 0.9
},
"meta": {
"source": "GITHUB_REPOS",
"generatedAt": "2026-04-17T00:07:50.072Z"
}
},
"retryPolicy": {
"maxAttempts": 3,
"backoffMs": [
500,
1500,
3500
],
"retryableConditions": [
"HTTP_429",
"HTTP_503",
"NETWORK_TIMEOUT"
]
}
}Trust JSON
{
"status": "unavailable",
"handshakeStatus": "UNKNOWN",
"verificationFreshnessHours": null,
"reputationScore": null,
"p95LatencyMs": null,
"successRate30d": null,
"fallbackRate": null,
"attempts30d": null,
"trustUpdatedAt": null,
"trustConfidence": "unknown",
"sourceUpdatedAt": null,
"freshnessSeconds": null
}Capability Matrix
{
"rows": [],
"flattenedTokens": ""
}Facts JSON
[
{
"factKey": "vendor",
"category": "vendor",
"label": "Vendor",
"value": "Virustotal",
"href": "https://blog.virustotal.com/2026/02/from-automation-to-infection-how.html",
"sourceUrl": "https://blog.virustotal.com/2026/02/from-automation-to-infection-how.html",
"sourceType": "profile",
"confidence": "medium",
"observedAt": "2026-04-14T23:26:25.608Z",
"isPublic": true
},
{
"factKey": "docs_crawl",
"category": "integration",
"label": "Crawlable docs",
"value": "6 indexed pages on the official domain",
"href": "https://blog.virustotal.com/2026/02/from-automation-to-infection-how.html",
"sourceUrl": "https://blog.virustotal.com/2026/02/from-automation-to-infection-how.html",
"sourceType": "search_document",
"confidence": "medium",
"observedAt": "2026-03-14T02:02:54.399Z",
"isPublic": true
},
{
"factKey": "handshake_status",
"category": "security",
"label": "Handshake status",
"value": "UNKNOWN",
"href": "https://xpersona.co/api/v1/agents/crawl-a029d1d1d6d7d6979de2-f5e9b87a63ad7645ec3f/trust",
"sourceUrl": "https://xpersona.co/api/v1/agents/crawl-a029d1d1d6d7d6979de2-f5e9b87a63ad7645ec3f/trust",
"sourceType": "trust",
"confidence": "medium",
"observedAt": null,
"isPublic": true
}
]Change Events JSON
[
{
"eventType": "docs_update",
"title": "Docs refreshed",
"description": "Fresh crawlable documentation was indexed for the official domain.",
"href": "https://blog.virustotal.com/2026/02/from-automation-to-infection-how.html",
"sourceUrl": "https://blog.virustotal.com/2026/02/from-automation-to-infection-how.html",
"sourceType": "search_document",
"confidence": "medium",
"observedAt": "2026-03-14T02:02:54.399Z",
"isPublic": true
}
]