Trello

OpenClaw analysis

This Trello skill is a straightforward API helper, but users should know its examples can read and change Trello cards when run with their token.

Confidence: high

VirusTotal

Type: OpenClaw Skill Name: trello Version: 1.0.0 The skill bundle is benign. It provides clear documentation and examples for managing Trello boards, lists, and cards using the official Trello REST API via `curl` commands. It explicitly requires `TRELLO_API_KEY` and `TRELLO_TOKEN` environment variables, which are used solely for authenticating with `api.trello.com`. There is no evidence of data exfiltration, malicious execution, persistence mechanisms, obfuscation, or prompt injection attempts against the agent beyond its stated purpose of interacting with Trello.