Back to skill
Skillv0.1.0
VirusTotal security
@blockchain-forever/aelf-skills · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 30, 2026, 4:46 AM
- Hash
- 34c3286353ec7d964d3f795b526b8a1f3532d973e591d3718a25ab2df81a124c
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: aelf-skills Version: 0.1.0 This skill bundle is designed as a 'hub' to discover, download, and configure other agent skills. Its core functionality involves executing external commands like `npm pack`, `git clone`, and `bun install` based on entries in `skills-catalog.json`. While this is the stated purpose, it introduces significant supply chain vulnerabilities: if `skills-catalog.json` is compromised or if the AI agent is prompted to use a malicious skill ID, arbitrary code could be downloaded and executed from untrusted npm packages or GitHub repositories. Furthermore, `SKILL.md` and `docs/AI_E2E_SCENARIOS.md` contain explicit instructions for the AI agent to execute shell commands (e.g., `./bootstrap.sh --only <skill-id>`, `cd downloaded-skills/<skill-id>; bun run setup openclaw`) with user-controlled input (`<skill-id>`). This creates a prompt injection risk against the AI agent, as an unsanitized `skill-id` could lead to arbitrary command execution by the agent. There is no evidence of intentional malicious behavior (e.g., data exfiltration, backdoors) in the provided code, but the inherent high-risk capabilities and potential for exploitation classify it as suspicious.
- External report
- View on VirusTotal