Back to skill
Skillv0.1.3
VirusTotal security
Bluebubbles Healthcheck · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 30, 2026, 4:37 AM
- Hash
- 2a4b2dc5cb434f1e2c98ed198c3633a428d38eac5450bcb0c577c24f3d8a8d3b
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: bluebubbles-healthcheck Version: 0.1.3 The skill is classified as suspicious due to a significant credential handling vulnerability. The `scripts/reset-webhook.sh` script constructs a webhook URL that embeds the `BB_PASSWORD` in the query string (e.g., `http://127.0.0.1:18789/bluebubbles-webhook?password=***`). While `SKILL.md` acknowledges this as a 'BlueBubbles → OpenClaw authentication constraint' and notes mitigations (localhost-only, masked in logs), storing and transmitting a password in a URL query parameter is a known security flaw that can lead to exposure in server logs, network captures, or process lists. Additionally, the skill executes privileged commands like `openclaw gateway restart` in `scripts/heal.sh`, which, while aligned with its stated purpose, combined with the credential vulnerability, warrants a 'suspicious' classification.
- External report
- View on VirusTotal