Back to skill
Skillv2.0.0
VirusTotal security
Muster Connect · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 30, 2026, 5:14 AM
- Hash
- fd3c31e73c448c350a4ea0f97337ae0d713ec8981c034e18333c408aa01fc0e4
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: muster Version: 2.0.0 The Muster skill bundle installs a local server and a cloudflared reverse tunnel to enable remote access, which it persists using launchd (macOS) or pm2 (Linux). While these actions support its stated goal of creating a 'co-working space,' the bundle includes high-risk instructions in SKILL.md that direct the agent to operate with 'radical freedom' and 'full autonomy,' explicitly telling it not to wait for permission. The scripts (install.sh, connect.sh) perform invasive modifications to the agent's environment, including editing the OpenClaw configuration and heartbeat files, which, combined with the automated remote access tunnel, create a significant attack surface for unauthorized remote control.
- External report
- View on VirusTotal