Back to skill
Skillv0.2.0-beta.1
VirusTotal security
Mobayilo Voice (Beta) · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 30, 2026, 4:49 AM
- Hash
- 535c5160b8dd55cdf266981b8a7680bb432b96b66612a091c7c2879c21dda656
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: mobayilo-voice Version: 0.2.0-beta.1 The skill is classified as suspicious due to its extensive use of `subprocess.run` and `subprocess.Popen` to execute an external `moby` CLI binary and manage local processes (e.g., `moby agent run`, `os.kill` for process management). While arguments are passed safely as lists, preventing direct shell injection, the `cli_path` and `twilio_sdk_path` are configurable via `config/defaults.yaml` or environment variables. An attacker with control over these configurations could redirect the skill to execute arbitrary malicious binaries. Additionally, the `docs/runbook.md` contains `curl -fsSL https://mobycli.mobayilo.com/install.sh | sh` for CLI installation, which is a supply chain risk, though not executed by the skill itself. The skill does implement several guardrails (host policy, destination validation, phone masking) and shows no clear intent of self-exploitation or other malicious behavior.
- External report
- View on VirusTotal