Back to skill
Skillv1.9.2
VirusTotal security
Skill · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
ReviewMay 1, 2026, 4:44 AM
- Hash
- c02f2fa4d4062afe445f3338ce2ee5e5d53854c584f2d6e6d6665f5b1b421313
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: evalanche Version: 1.9.2 The 'evalanche' skill is a high-privilege multi-EVM agent wallet SDK that manages sensitive credentials (AGENT_PRIVATE_KEY, AGENT_MNEMONIC) and performs automated financial operations across 21+ chains. It implements an encrypted-at-rest keystore in '~/.evalanche/keys/' and includes powerful tools for contract proxy upgrades ('upgrade_proxy'), cross-chain bridging, and executing external system binaries ('platform-cli'). While these capabilities are aligned with its stated purpose in SKILL.md, the inherent risks of automated key management, financial transaction execution, and system-level interactions (file and binary access) meet the criteria for a suspicious classification despite no evidence of intentional malice.
- External report
- View on VirusTotal