Back to skill
Skillv1.1.1
VirusTotal security
Liberfi Perpetuals · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 29, 2026, 2:46 AM
- Hash
- c19b09b0d9b837febf7b9d5ee0341888a660ec7d5931ecbfd07c725a77b1b964
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: liberfi-perpetuals Version: 1.1.1 The skill bundle for 'liberfi-perpetuals' is classified as suspicious due to instructions in SKILL.md that command the agent to automatically install a global NPM package (@liberfi.io/cli) without user consent and to perform automated logins (lfi login key) to access server-managed TEE wallets. While these actions are aligned with the stated purpose of trading on LiberFi, the 'silent' installation and automated credential handling represent significant security risks and high-privilege operations that bypass typical user confirmation steps.
- External report
- View on VirusTotal