Back to skill
Skillv2.1.0
VirusTotal security
Cc · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 30, 2026, 4:27 AM
- Hash
- d667c3a2c9e1ceeba6834a1f5f5849db6a74239a65b78f0563be930da9fa96c7
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: cc Version: 2.1.0 The skill provides a remote relay to the Claude Code CLI tool via tmux, which effectively grants the user remote command execution capabilities on the host. The SKILL.md file contains explicit instructions for the AI agent to act as a 'transparent pipe' and 'never interpret, analyze, or answer,' which is a prompt-injection technique designed to bypass the agent's safety filters and reasoning. While the bash script (scripts/cc.sh) appears to be a legitimate implementation of this relay functionality and lacks overt evidence of intentional malware or data exfiltration, the combination of remote shell access and instructions to disable agent-side oversight represents a high-risk security profile.
- External report
- View on VirusTotal