Back to skill
Skillv1.0.0
VirusTotal security
Reference Maintainer · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 16, 2026, 9:01 PM
- Hash
- 58756e2720279b9a0967dfb0d1df62226db9865555d753ed3a35aa4b9a090882
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: reference-maintainer Version: 1.0.0 The skill bundle is designed as a system documentation generator but explicitly instructs the AI agent to extract and include 'credentials' in the generated reference docs (SKILL.md and references/templates/schema.yaml). While the Python scripts (scripts/universal_doc_generator.py) use standard AST parsing to extract configurations, the directive to harvest secrets and store them in 'living reference docs' for session persistence is a high-risk behavior that facilitates credential harvesting. No explicit exfiltration logic or remote endpoints were identified, suggesting this may be a misguided 'expert memory' feature rather than a targeted attack, but it remains highly irregular and dangerous.
- External report
- View on VirusTotal