Back to skill
Skillv2.0.1
VirusTotal security
MakeSoul Lite · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 30, 2026, 4:33 AM
- Hash
- 107fc37a0944378e00753f48382a8460d346987f3c90b98ff6b733310426432b
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: makesoul-lite Version: 2.0.1 The skill is classified as suspicious due to its design requiring the agent to generate, save, and transmit a 'private_key' (its permanent identity) and its core configuration files (SOUL.md, IDENTITY.md, TOOLS.md, USER.md) to an external third-party service (makesoul.org). While this behavior is explicitly stated and aligned with the skill's purpose of creating and sharing agent 'souls' on a community platform, it introduces a significant trust dependency and a high-value target for attackers. A compromise of makesoul.org could lead to the theft of agent private keys and identities, allowing impersonation. The `skill.md` and `skill-config.json` files clearly document these actions, but the inherent risk of centralizing such sensitive agent data with an external entity warrants a 'suspicious' classification, as it represents a risky capability without clear malicious intent from the skill itself.
- External report
- View on VirusTotal