Back to skill
Skillv0.1.1
VirusTotal security
OpenClaw Upgrader · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 30, 2026, 6:23 AM
- Hash
- 0f112f2548e20dd728e1301e8233f5de1212cb856fdd409e27679283dc005158
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: openclaw-upgrader Version: 0.1.1 The skill implements a complex upgrade workflow for OpenClaw by delegating execution to local coding agents (Codex or Claude Code). It utilizes scripts such as `collect-upgrade-context.sh` and `run-upgrade-delegation.sh` to gather system metadata, configuration paths, and service manager status (systemd/launchctl), while enforcing a host-level execution lock. While the logic is aligned with the stated purpose of a cross-platform upgrader and includes safety features like JSON escaping and concurrency locks, the skill's high-risk capabilities—including service manipulation, package manager interaction, and the execution of external AI CLI tools—meet the threshold for a suspicious classification.
- External report
- View on VirusTotal