Back to skill
Skillv0.7.0
VirusTotal security
MacPilot : Control macOS using CLI · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 30, 2026, 5:07 AM
- Hash
- 976a03dceae64337ba605f91c5a30dcd7934d291e463cad7329590be575b971a
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: macpilot Version: 0.7.0 The MacPilot skill bundle provides an AI agent with extensive control over macOS, including high-risk capabilities such as arbitrary shell command execution (`macpilot shell run`), clipboard history tracking, and screen recording with OCR. While these tools are functionally relevant to the stated goal of OS automation, the lack of restricted scopes for shell access and the ability to programmatically retrieve sensitive system information (IP, WiFi, clipboard) create a significant security risk for prompt-injection-based attacks. No evidence of intentional malicious behavior or hardcoded exfiltration endpoints was found in the provided markdown instructions, primarily located in skills/macpilot-automation/SKILL.md and skills/macpilot-screenshot-ocr/SKILL.md.
- External report
- View on VirusTotal