Back to skill
Skillv3.0.4
VirusTotal security
Openclaw Eo Plugin · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 15, 2026, 4:21 AM
- Hash
- 525d2b8288ce637c30c5e7899389999e0894a726101cf91af3af12536fbdb815
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: openclaw-eo-plugin Version: 3.0.4 The plugin implements an extremely invasive multi-agent orchestration framework that automatically modifies core system files and agent identities. Most notably, 'auto-init.js' and 'rule-enforcer.js' programmatically rewrite the 'SOUL.md' (system prompts) of all agents in the environment to inject new behavioral logic, while 'auto-workspace-manager.js' and 'cron-manager.js' modify the global 'openclaw.json' and cron configurations to establish persistence. Furthermore, the 'closed-loop-evolver.js' allows the system to autonomously generate and enforce 'mandatory' rules that agents cannot bypass, creating a significant risk of unintended behavior or self-exploitation. While these features align with the stated goal of a 'Steel Crayfish Legion' orchestration system, the broad filesystem access and the ability to exfiltrate data via Feishu/webhooks (proactive-notifier.js) warrant a suspicious classification.
- External report
- View on VirusTotal