Back to skill
Skillv1.0.0
VirusTotal security
Clash Controller · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
BenignApr 30, 2026, 6:28 AM
- Hash
- 319390f0f071602d504fac32441c047dc7aa62a152f60b6e13c11ebb66ce4757
- Source
- palm
- Verdict
- benign
- Code Insight
- Type: OpenClaw Skill Name: openclaw-clash-forwindows-controller Version: 1.0.0 The skill bundle is designed to control a local Clash for Windows proxy client via its REST API. The code in `skill.js` performs standard HTTP requests to `127.0.0.1` to toggle proxy settings and list nodes based on user commands. While it contains a hardcoded API secret and references a specific Windows path (`C:\Users\Administrator`), these are functional requirements for interacting with the Clash API and appear to be configuration defaults rather than indicators of malice. No evidence of data exfiltration, remote code execution, or unauthorized system access was found.
- External report
- View on VirusTotal