Back to skill
Skillv1.0.0
VirusTotal security
Kilocode Model Sync · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
ReviewMar 24, 2026, 5:16 PM
- Hash
- 41ed8bddef178b32770e5e1f65d74f11c1333834293b2112b6b1f80da40f4a3c
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: kilocode-model-sync Version: 1.0.0 The skill performs high-risk operations including reading sensitive environment variables from `~/.openclaw/.env`, modifying the core `openclaw.json` configuration file, and executing system commands to restart the gateway service. While these actions are aligned with the stated purpose of syncing model lists from the Kilo AI API, the broad file system access and execution privileges in `apply_patch.py` and `sync_models.py` represent a significant attack surface. Additionally, the skill contains hardcoded paths to specific Node.js versions and instructions for external data exfiltration/notification via Telegram to specific users, which is characteristic of a highly customized or internal tool with broad permissions.
- External report
- View on VirusTotal