Back to skill
Skillv1.0.0
VirusTotal security
Security Audit · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 16, 2026, 1:11 AM
- Hash
- f412df361ea54668a5afd1ff0c84572d15ecc99e3c13a9d6cf318a089d64a494
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: alvis-sec-audit Version: 1.0.0 The skill 'openclaw-security-audit' (SKILL.md) is a security auditing tool that instructs the AI agent to perform extensive system reconnaissance and discovery. It utilizes high-risk commands to inspect network listeners (ss -tulpen), search the entire filesystem for SUID binaries (find / -perm -4000), read sensitive configuration files (~/.openclaw/config.json), and review system logs (journalctl). While the instructions include explicit safety guardrails—such as prohibitions on data exfiltration and requirements to redact secrets—the broad system access and information-gathering capabilities are inherently risky and align with the 'suspicious' classification for risky capabilities plausibly needed for a stated purpose.
- External report
- View on VirusTotal