Back to skill
Skillv1.0.0
VirusTotal security
Expanso tls-inspect · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
ReviewMay 1, 2026, 3:47 AM
- Hash
- 5d0a92025a9eb760fef645a4d6adffb9f957508a567d1aec4afb68c303657f3d
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: expanso-tls-inspect Version: 1.0.0 The `pipeline-cli.yaml` file contains a critical shell injection vulnerability. User-controlled input (`this.host` and `this.host_with_port`), derived directly from the skill's input, is embedded without sufficient sanitization into a `sh -c` command that executes `openssl`. This allows an attacker to inject arbitrary shell commands by crafting the input hostname, leading to potential remote code execution. While the skill's stated purpose is benign (TLS inspection), this severe input sanitization flaw makes it suspicious.
- External report
- View on VirusTotal