Back to skill
Skillv1.0.1
VirusTotal security
Claw Ethics Checker · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 30, 2026, 3:46 AM
- Hash
- cd52c782060e4ca73a9e6c35456d566991d4967fe369d6a167a187835497d12d
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: claw-ethics-checker Version: 1.0.1 The skill's core functionality aligns with its stated purpose of ethics and compliance checking. However, the `export_decision_log` method in `claw_ethics_checker.py` directly uses an unsanitized `filepath` argument to write log data, creating a Local File Write vulnerability. This flaw could allow an attacker to write arbitrary JSON content to arbitrary file system locations if they can control the `filepath` argument, making the skill suspicious due to this exploitable vulnerability.
- External report
- View on VirusTotal