Back to skill
Skillv2.2.1
VirusTotal security
Build · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 30, 2026, 4:14 AM
- Hash
- 7b7d437f6a0d904764c64198cf4181f81f334c1758c3c7c58e0fb1c505b1f07b
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: solo-build Version: 2.2.1 The skill is classified as suspicious due to its extensive use of powerful tools like `Bash`, `Write`, `Edit`, and `web_search` as defined in `SKILL.md`. While the instructions consistently guide the agent towards legitimate software development, testing, and verification tasks (e.g., running linters, compilers, test suites, git commands, installing dev tools), the inherent capability to execute arbitrary shell commands and modify files presents a significant attack surface. A compromised agent or malicious project configuration (e.g., in `Makefile`, `docs/workflow.md`, or `stack.yaml`) could exploit these capabilities for unauthorized actions, even though the skill's own instructions do not demonstrate malicious intent.
- External report
- View on VirusTotal