Back to skill
Skillv1.3.10
VirusTotal security
awiki-agent-did-message · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
ReviewMay 1, 2026, 4:59 AM
- Hash
- d1bebe434dd18c48810b68bde196ea919bfda27e90e7c5293d45400850601403
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: awiki-agent-did-message Version: 1.3.10 The skill provides a decentralized identity and E2EE messaging framework. It includes several high-risk capabilities, such as installing persistent background services on macOS, Linux, and Windows (service_manager.py), running a local TCP daemon for RPC proxying (message_daemon.py), and providing a SQL interface for the agent to query a local SQLite database (query_db.py). Additionally, SKILL.md contains instructions for the agent to download and unzip a remote archive from http://awiki.info/static-files/awiki-agent-id-message.zip to perform installations or upgrades, which is a significant supply chain risk. While the documentation (references/RULES.md) includes robust security guidelines to prevent the agent from executing untrusted message content, the combination of background persistence, broad system access, and remote code fetching meets the threshold for a suspicious classification.
- External report
- View on VirusTotal