Back to skill
Skillv1.0.2
VirusTotal security
letcairn.work · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 30, 2026, 3:28 AM
- Hash
- d40609b10c473646b1286c72c07a1e0ddeac09d158e505b441dfd7310b337d9e
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: cairn-cli Version: 1.0.2 The skill bundle instructs the AI agent to execute `npm install -g cairn-work` in `SKILL.md` and `README.md`. While this command is necessary for the skill's stated purpose of installing the Cairn CLI, it involves executing code from an external source (npm registry) with global system permissions. This constitutes a significant supply chain risk, as a compromised `cairn-work` package could lead to arbitrary code execution. There is no evidence of intentional prompt injection to subvert the agent's core directives or other direct malicious actions within the analyzed files.
- External report
- View on VirusTotal