Back to skill
Skillv1.0.0
VirusTotal security
DevOps Ops Bot · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 29, 2026, 5:18 AM
- Hash
- c11ed28f0273a2d967a2542dca7c6893d00ef2f06edf5c8161a6f70166580dab
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: devops-ops-bot Version: 1.0.0 The skill bundle lacks implementation code and instead directs the OpenClaw agent to download and execute remote content via 'npx' and a 'curl | bash' one-liner from a GitHub repository (gruted/devops-ops-bot). While the stated purpose of server monitoring is plausible, the promotion of unverified remote script execution and the capability to run arbitrary system commands via '--restart-cmd' are high-risk behaviors that cannot be verified within the provided files.
- External report
- View on VirusTotal