Back to skill
Skillv6.2.0
VirusTotal security
Clawhub Publish V621 · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
BenignApr 30, 2026, 6:15 AM
- Hash
- bb66e6910126437faf826259789cbf98f612840dacf17ec4ae73955fd41f5c40
- Source
- palm
- Verdict
- benign
- Code Insight
- Type: OpenClaw Skill Name: agent-security-skill-scanner Version: 6.2.0 The agent-security-skill-scanner bundle is a legitimate security tool designed to scan AI agent skill directories for malicious code and vulnerabilities. It employs a sophisticated three-layer detection architecture (Pattern, Rule, and LLM engines) and includes specialized modules for detecting credential theft chains (credential_theft_classifier.py), risky curl usage (curl_risk_classifier.py), and complex attack patterns (composite_detector.py). The scanner includes features to reduce false positives, such as a whitelist filter and a context-aware risk adjustment module (security_tool_detector.py). While it possesses high-privilege capabilities like broad file access and optional data transmission to LLM APIs (e.g., MiniMax), these are well-documented and consistent with its stated purpose as an enterprise-grade security scanner. No evidence of intentional malicious behavior or backdoors was found.
- External report
- View on VirusTotal