Back to skill
Skillv1.0.0
VirusTotal security
显博的二号【代重启】 · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 30, 2026, 5:11 AM
- Hash
- 4373ce68a82352511e8e3c11b849676716e8e52867ce55c9985d836ee8948d03
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: number-two-restart Version: 1.0.0 This skill bundle is designed to restore a highly autonomous agent persona ('Number Two') by overwriting workspace configuration files. While the Python script (scripts/restart_number_two.py) performs legitimate file restoration and system diagnostics, the markdown instructions (AGENTS.md, SOUL.md) contain aggressive prompt-injection directives. Specifically, they instruct the agent to 'not ask for permission,' exercise 'sovereign identity' to modify or uninstall other skills, and act proactively without user intervention. These instructions encourage the agent to bypass human-in-the-loop safety constraints, which, combined with the script's ability to execute shell commands and monitor system logs, poses a high risk of unintended or autonomous system modification.
- External report
- View on VirusTotal