Back to skill
Skillv1.0.0
VirusTotal security
Ampere marketplace · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
ReviewMar 29, 2026, 9:31 AM
- Hash
- 50135c27521d638f44cb0a346c7581aaa9419eedcbbcc5e6d2410a63374361c8
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: ampere Version: 1.0.0 The skill functions as a third-party marketplace and downloader that fetches ZIP files from a remote API (api.agentplace.sh) and installs them into the local environment (~/.openclaw/workspace/skills/). While SKILL.md includes security instructions such as requiring user confirmation and previewing content before installation, the core logic facilitates Remote Code Execution (RCE) by downloading and unzipping arbitrary code from an external source. The reliance on a remote endpoint for executable content and the mention of an external 'install.sh' script (not provided in the bundle) represent a significant supply chain risk.
- External report
- View on VirusTotal