Back to skill
Skillv1.0.0
VirusTotal security
my skill · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 30, 2026, 5:18 AM
- Hash
- fc502eabc171a3e15cb21ac20239de73aba8f4d27a4d81bb017d09f467ccd3ea
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: aoto Version: 1.0.0 The bundle provides a comprehensive suite of 54 commands for full desktop automation on macOS via the `agent-desktop` CLI. It includes high-risk capabilities such as capturing screenshots (`screenshot` in `references/commands-observation.md`), reading and writing to the system clipboard (`clipboard-get/set` in `references/commands-system.md`), and full UI inspection (`snapshot` in `references/commands-observation.md`), which could be used to access sensitive data. While these features are consistent with the stated goal of GUI automation and the documentation is thorough, the broad permissions and potential for abuse by an AI agent—without built-in safeguards or restricted scopes—warrant a suspicious classification under the provided criteria. No evidence of intentional malice or exfiltration was found.
- External report
- View on VirusTotal