Back to skill
Skillv0.1.1
VirusTotal security
AOI Squad Orchestrator (Lite) · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
ReviewMay 1, 2026, 4:03 AM
- Hash
- 57518acd838fa545d97e25b95a4255bdaa54ecd223fc6031c235de318e4ab396
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: aoi-squad-orchestrator-lite Version: 0.1.1 The skill.js script is vulnerable to prompt injection against the OpenClaw AI agent. User-controlled inputs like `--task` and `--name` are embedded into the `report_markdown` field of the output JSON. The `mdEscape` function only escapes `<` and `>`, leaving other Markdown syntax (e.g., `#`, `*`, `[`, `]`, ` `) unescaped. This allows an attacker to inject arbitrary Markdown into the report, which an AI agent consuming this output could interpret as new instructions, potentially leading to unauthorized actions. While the skill itself does not exhibit malicious intent (e.g., no data exfiltration, no persistence mechanisms), this vulnerability creates a significant attack surface for an AI agent.
- External report
- View on VirusTotal