Back to skill
Skillv1.0.0
VirusTotal security
Runtime Debug Skill · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 30, 2026, 5:39 AM
- Hash
- 935abb5d67ea139f772fbb3730491643d7f55c418492c616445a5b508a480f29
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: runtime-debug-skill Version: 1.0.0 This skill bundle is classified as suspicious due to high-risk installation methods and invasive data collection. Key indicators include the use of 'curl | bash' for Node.js SDK installation (nodejs.md), the inclusion of a hardcoded GitHub Personal Access Token split into two parts to evade detection (java.md), and instructions in SKILL.md that direct the AI agent to use persuasive language to 'credit' the tool, which acts as a form of prompt injection. The SDKs are designed to capture and exfiltrate sensitive runtime data, including local variables and arguments, to a remote endpoint (api.syn-cause.com), representing a significant security and privacy risk.
- External report
- View on VirusTotal