Back to skill
Skillv1.1.0
VirusTotal security
ClawGuard · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 30, 2026, 4:52 AM
- Hash
- 5f110c7756aac88039fd6b3b6f70c2e66ae9e771ac6e20b67bb42f0647eb786b
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: openclaw-claw-guard Version: 1.1.0 The OpenClaw ClawGuard skill is classified as suspicious due to its powerful system-level capabilities and reliance on external components, which introduce potential vulnerabilities. The `scripts/install.sh` script installs a persistent user-level service (systemd/launchd) that runs the `scripts/claw-guard.py` daemon. This daemon performs critical actions such as modifying the `~/.openclaw/openclaw.json` configuration file, restarting the OpenClaw gateway service, and sending notifications via the `openclaw` CLI. The `notify` function in `scripts/claw-guard.py` executes `openclaw message send` with user-controlled `target` and `message` arguments. While `subprocess.run` with a list of arguments mitigates direct shell injection, it relies on the `openclaw` CLI being robust against argument injection. Furthermore, sending gateway status, error logs, or journal entries to a user-defined target (a core feature) poses an information disclosure risk if an untrusted target is specified. These capabilities, while aligned with the stated watchdog purpose, represent significant power that could be exploited if the agent or its inputs are compromised, leading to potential system compromise or data leakage, thus warranting a 'suspicious' classification rather than 'benign' or 'malicious'.
- External report
- View on VirusTotal