Resize Move Partition Coach
PassAudited by VirusTotal on May 11, 2026.
Overview
Type: OpenClaw Skill Name: resize-move-partition-coach Version: 0.1.0 The skill automates the download and silent installation of a third-party executable from easeus.com using scripts/install-epm.py. It also provides instructions in SKILL.md for the AI agent to bypass User Account Control (UAC) and antivirus warnings to run the software with administrative privileges. While these actions are consistent with the stated purpose of partition management, the combination of remote binary execution, silent installation flags (/verysilent), and explicit guidance to ignore security protections constitutes a high-risk pattern.
Findings (0)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
A downloaded installer would run with installer-level impact on the machine, and the user has limited visibility into what is being installed during the silent flow.
The script downloads an installer executable from remote mirrors and runs it silently. The provided code does not show checksum, signature, or pinned-release verification before execution.
url = f"https://{host}.easeus.com/epm/free/epm_free_ob.exe?source=skills&dest={dest_arg}" ... subprocess.run([str(dest_path), "/verysilent", "/suppressmsgboxes", "/norestart", "/log"], check=False)Avoid silent installation by default. Provide a normal install spec, verify the vendor signature or checksum, show the exact download URL, and require explicit user approval before running the installer.
An agent or user could launch partition-manager actions outside the intended resize/move path, which could lead to unintended disk layout changes if the external tool applies them.
The first command-line argument is passed directly as an EPMUI shell command. For a partition manager, an unrestricted command pass-through is broader than a tightly scoped resize/move workflow.
shellcmd = argv[0] ... f"shellcmd={shellcmd}", f"shellparam={tmp_file}",Restrict the helper to documented safe commands, validate the target drive/partition, show a dry-run plan, and require explicit user confirmation before any disk-changing operation.
Running this elevated can change disks and system state; mistakes or unwanted behavior could be difficult to undo.
The skill explicitly asks for administrator/UAC elevation. That is expected for partition work, but it gives the installer and app high system privileges.
Run terminal as Administrator before script execution or app launch; Approve User Account Control prompts during install and launch
Only run it from a trusted source, back up important data first, verify the partition preview carefully, and do not approve UAC prompts unless you intentionally started the action.