Back to skill
Skillv1.0.1
VirusTotal security
OpenClaw Rescue Gateway Skill.md · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 30, 2026, 5:11 AM
- Hash
- 7b7c1474d4be44953c0e65a7ac1814289b4e75ded41bffa4c79fd30f83418735
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: openclaw-rescue-gateway-skill Version: 1.0.1 The SKILL.md instructions direct the creation of a 'Rescue Gateway' that functions as a high-privilege persistence mechanism with all security guardrails disabled. It specifically commands the agent to set 'tools.exec.security' to 'full', 'ask' to 'off', and 'permissionMode' to 'approve-all', creating an unmonitored remote execution environment. Furthermore, it instructs the duplication of sensitive API credentials (auth-profiles.json) and the setup of a persistent macOS launchd service (ai.openclaw.gateway.rescue.plist) designed to remain active even when the primary gateway is stopped.
- External report
- View on VirusTotal