Back to skill
Skillv2.0.0
VirusTotal security
Skill Multi Publisher · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 30, 2026, 5:24 AM
- Hash
- d361d30bef851017e547f5414a147b5c2e4119d666ca76c1a2ae41bbab50236d
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: skill-multi-publisher Version: 2.0.0 The skill automates the publishing of code to multiple public platforms and community marketplaces, including GitHub and ClawHub. It utilizes high-risk capabilities such as creating public repositories (`gh repo create`), forking third-party repositories, and submitting pull requests to several hardcoded community directories (e.g., `anthropics/skills`, `composiohq/awesome-claude-skills`) via `SKILL.md` instructions. While these actions are aligned with the stated purpose of a 'multi-publisher' tool, the extensive use of shell commands and automated public code distribution presents a significant risk for accidental data leakage or repository spamming.
- External report
- View on VirusTotal