Back to skill
Skillv1.0.0
VirusTotal security
Message Injector · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
BenignApr 29, 2026, 4:24 AM
- Hash
- f285c22de1189d4b3e9158cc0054ef585cd5e8bfc83ce17e5a32bbd69aedd836
- Source
- palm
- Verdict
- benign
- Code Insight
- Type: OpenClaw Skill Name: message-injector Version: 1.0.0 The OpenClaw Message Injector plugin is designed to prepend custom text to every user message before it reaches the AI agent. This functionality, while powerful and effectively a form of persistent prompt injection, is the plugin's stated purpose and is implemented without any malicious code or instructions. The `SKILL.md` documentation clearly explains this mechanism and provides examples for legitimate use cases such as enforcing memory search, adding context, or injecting safety rules. The `scripts/index.ts` code simply retrieves the user-configured `prependText` and returns it via the `prependContext` hook, without any file system operations, network calls, or attempts at data exfiltration, persistence, or unauthorized execution. The plugin itself is a neutral tool; its potential for misuse depends entirely on the text configured by the user, not on any inherent maliciousness in the plugin's design or implementation.
- External report
- View on VirusTotal