Back to skill
Skillv1.0.1
VirusTotal security
Cirrus Labs · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 22, 2026, 11:42 PM
- Hash
- 94d1085f1d0e5b07d37614e9d1fd3ec96a01e10204906f01f9523537406ea9d8
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: cirrus-labs Version: 1.0.1 The skill facilitates integration with Cirrus Labs by instructing the agent to install a global npm package (@membranehq/cli) and use a third-party platform (getmembrane.com) for authentication and remote action execution. While these capabilities are aligned with the stated purpose of CI/CD automation, the requirement for high-privilege installation and the ability to dynamically create and run arbitrary actions via a third-party CLI represent a significant attack surface. No explicit evidence of malicious intent was found in SKILL.md or _meta.json, but the broad operational risks justify a suspicious classification.
- External report
- View on VirusTotal