Back to skill
Skillv1.0.2
VirusTotal security
OpenClaw Security Audit · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
ReviewApr 30, 2026, 6:11 AM
- Hash
- 357a23b011736b876e6b695ed820a421e5803055ed9ae043e28ef3f5b9e51435
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: security-audit-openclaw Version: 1.0.2 The skill performs high-privilege security auditing that includes several high-risk behaviors: scanning the workspace for plaintext private keys and mnemonics (DLP), reading sensitive environment variables from the /proc filesystem, and optionally exfiltrating the entire OpenClaw state directory (which may contain API keys and session data) to a remote Git repository. While these actions are documented in SKILL.md and SECURITY.md as legitimate auditing and backup functions, and external communication (Git/Telegram) is disabled by default, the broad system access and potential for data exposure via hardcoded endpoints (api.telegram.org) warrant a suspicious classification. Key files involved are scripts/openclaw_security_audit.py and SKILL.md.
- External report
- View on VirusTotal