Back to skill
Skillv1.0.0
VirusTotal security
Gateway Watchdog · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 29, 2026, 4:56 AM
- Hash
- fceb2ba6f5d701c85896e621814c749b69c77ab1978867cdb8f70da537acb651
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: gateway-watchdog-xiaoxi Version: 1.0.0 The skill is classified as suspicious primarily due to a significant supply chain vulnerability. The `install.py` script downloads the core `gateway_watchdog.py` file directly from an unverified GitHub raw content URL (`https://raw.githubusercontent.com/adminlove520/openclaw-gateway-watchdog-v2/main/gateway_watchdog.py`). This means that if the external GitHub repository is compromised or the maintainer pushes malicious code, the user's system will download and execute it without any integrity checks. While the `gateway_watchdog.py` script itself appears to perform its stated function (monitoring and restarting the OpenClaw Gateway) and does not show explicit malicious intent, the installation method introduces a critical security risk.
- External report
- View on VirusTotal