Back to skill
Skillv1.0.1
VirusTotal security
Skill · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
ReviewMay 1, 2026, 3:54 AM
- Hash
- dcdb6dc6960aadd676d978ea83d59c2aa4d58d9c2fbf11bde7a3e113296d9cf0
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: sandboxer-tmux Version: 1.0.1 This skill is highly suspicious due to its extremely broad capabilities and the explicit instructions for its use. It provides full shell access (`type=bash`), arbitrary command execution (`/api/send`), and file read/write access (`/api/workspace/W/file/PATH`) via an unauthenticated API exposed on `localhost:8081`. The `SKILL.md` explicitly states it grants 'full access to tmux sessions, workspace files, and terminal output on your server' and is 'Intended for dedicated AI machines where agents run with root access.' While these capabilities might align with its stated purpose of dispatching coding tasks, they create a massive attack surface, enabling full system compromise if the agent or the local machine is compromised. The lack of authentication on localhost for such powerful operations is a critical vulnerability.
- External report
- View on VirusTotal