Back to skill
Skillv1.2.1
VirusTotal security
OpenClaw Cofounder Skill · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 30, 2026, 4:37 AM
- Hash
- 857238ae0f7d51b00d0c0fe4cc6f6a1bf627b573088d8bd5ebb4ddee4a5b530c
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: cofounder-im Version: 1.2.1 The skill is classified as suspicious due to its core functionality involving the execution of remote build specifications fetched from `cofounder.im` via `curl`. While the `SKILL.md` includes strong defensive instructions for the AI agent, emphasizing user approval and review of build plans and sub-agent phases, the inherent capability to execute arbitrary code from a remote source (the `openclaw_builder` output) represents a significant risk. Additionally, the `curl` commands used to fetch project data and build specifications, which involve inserting a `PROJECT_ID`, present a potential shell injection vulnerability if the OpenClaw agent does not rigorously sanitize user-controlled input before command execution. No evidence of intentional malicious behavior, such as unauthorized data exfiltration or backdoor installation, was found within the provided files.
- External report
- View on VirusTotal