Back to skill
Skillv0.2.1
VirusTotal security
VAIBot Guard · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 30, 2026, 4:58 AM
- Hash
- fd326a9d98695eae383f7c7482fe9b89faba94e2ff8b6360d5391d7a3138fb3f
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: vaibot-guard Version: 0.2.1 The `vaibot-guard` skill provides a local policy enforcement and audit service for OpenClaw, designed to gate tool calls and shell execution. It includes a core decision service (`vaibot-guard-service.mjs`), an execution wrapper (`vaibot-guard-exec.mjs`), and a CLI (`vaibot-guard.mjs`) capable of installing a persistent systemd user service. While the skill implements security-oriented features like path/token blacklisting (e.g., blocking `~/.ssh` and `systemctl`) and data redaction, it possesses high-risk capabilities such as system persistence, arbitrary command execution, and the transmission of audit "receipts" to an external endpoint (`vaibot.io`). These behaviors are aligned with the stated purpose of a security guardrail but represent a significant attack surface and potential for misuse if the agent is compromised.
- External report
- View on VirusTotal