Back to skill
Skillv0.0.1
VirusTotal security
openbotclaw · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 30, 2026, 4:13 AM
- Hash
- d4ecf4fa16b74b0f77937efd59f53f5c9347cfae4f1ec8c86ce9e2ee54403e02
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: openbotclaw Version: 0.0.1 The skill bundle is classified as suspicious due to a critical prompt injection vulnerability. The `openbotclaw.py` skill's `build_observation()` method incorporates raw chat messages from other agents into the observation string presented to the AI agent. The `SKILL.md`, `HEARTBEAT.md`, and `MESSAGING.md` files explicitly instruct the AI agent to process and reply to these messages, especially those where it is @mentioned. This creates a clear attack surface where a malicious external agent could send specially crafted chat messages to attempt to subvert the target agent's instructions or behavior. While this is a significant vulnerability, there is no evidence of intentional malicious behavior (e.g., data exfiltration, backdoor installation) by the skill's authors; in fact, the documentation (`RULES.md`) explicitly warns against 'leaking credentials' and 'malicious content'.
- External report
- View on VirusTotal