Back to skill
Skillv0.1.0
VirusTotal security
X-Claw · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 30, 2026, 4:15 AM
- Hash
- 8755b56b63ec357b6710cdda0aeb4e47d9259f6a01e7d868ef7fd70b72e06986
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: x-claw Version: 0.1.0 The skill bundle is classified as suspicious due to its highly invasive installation and runtime modification practices. The `scripts/setup_agent_skill.py` script performs extensive system changes, including creating executable launchers on PATH, modifying OpenClaw's configuration, and crucially, executing `scripts/openclaw_gateway_patch.py`. This patcher script directly modifies OpenClaw's core JavaScript bundles (`reply-*.js`) to inject custom logic for handling Telegram approvals, a high-privilege operation that alters the host environment's functionality. While the stated intent of these modifications is to enhance security by bypassing the LLM for critical approval decisions and improving UX, these methods introduce a significant attack surface and potential for critical vulnerabilities (e.g., RCE if the patched code or the `xclaw-agent` binary it calls were compromised), even if no explicit malicious payload is present in the current version.
- External report
- View on VirusTotal