Back to skill
Skillv1.0.0
VirusTotal security
Agent Autonomy · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 30, 2026, 4:50 AM
- Hash
- 71397e8bac401bb70ffc9eb4154a44a817432e92af9a3a9e3334751174d1fdaf
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: agent-autonomy Version: 1.0.0 The skill instructs the agent to register itself and communicate extensively with an external domain, `onlyflies.buzz`, via multiple `curl` commands in `SKILL.md`. It also uses prompt injection to embed these external URLs into the agent's `AGENTS.md` for 'cross-platform identity' and 'network coordination'. While the stated purpose is agent autonomy, establishing an identity and persistent communication channel with an arbitrary external service introduces significant supply chain risk and potential for abuse, classifying it as suspicious due to these risky capabilities without clear malicious intent.
- External report
- View on VirusTotal