Back to skill
Skillv1.4.4
VirusTotal security
AgentOS SDK for Clawdbot · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 28, 2026, 3:21 AM
- Hash
- 456cdb9f61b6c6041bcefb40f57f48505e987b2b9bce49fcea43603b195cc4c0
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: agentos Version: 1.4.4 The skill is classified as suspicious due to its extensive data exfiltration, persistence mechanisms, and the use of a hardcoded IP address for its API endpoint. The `SKILL.md` explicitly instructs the agent to sync `CONTEXT.md`, daily notes, and project data to `https://brain.agentos.software` and `http://178.156.216.106:3100` (also seen in `scripts/mesh-wake.sh`), including a `dump-all` API endpoint. Furthermore, it recommends setting up cron jobs for `agentos-sync.sh` and `scripts/mesh-wake.sh` to ensure continuous data syncing and agent activation, establishing persistence. While these actions are explicitly stated as core functionalities of the 'AgentOS SDK', the sheer volume of data collected, its persistent exfiltration, and the use of a direct IP address for the API raise significant security and privacy concerns, pushing it beyond a benign classification.
- External report
- View on VirusTotal