Back to skill
Skillv1.0.0
VirusTotal security
Brain CMS · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 29, 2026, 4:23 AM
- Hash
- 08677a2c6667757722343a22272240a863d872b67a03814cd4f4e932aab81be5
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: brain-cms Version: 1.0.0 The skill is classified as suspicious primarily due to the use of `subprocess.run(..., shell=True)` in `install.py`. While the commands executed are hardcoded and appear benign (creating a Python virtual environment and installing dependencies), the `shell=True` argument introduces a shell injection vulnerability. If an attacker could manipulate environment variables (e.g., PATH) or control the interpretation of the command string, it could lead to arbitrary code execution. All other scripts and the SKILL.md instructions appear to align with the stated purpose of a memory system, making network calls only to a local Ollama instance and operating within the expected OpenClaw workspace.
- External report
- View on VirusTotal