Back to skill
Skillv1.0.0
VirusTotal security
Tech Security Audit · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 29, 2026, 3:39 AM
- Hash
- 4a59f708a57f9c80869f0d6fd8ddbb481a6cf64b5f2fe7669a4aff00e53956b2
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: tech-security-audit Version: 1.0.0 The skill is classified as suspicious due to its core functionality in `nmap_scanner.py` which executes `nmap` via `subprocess.run`. While the use of `nmap` is aligned with the stated 'Tech Security Audit' purpose, it grants broad network access and reconnaissance capabilities. The `target` parameter is user-controlled, posing a significant risk of misuse if an AI agent is prompted to scan unauthorized internal networks or sensitive targets, even though the code itself does not exhibit direct shell injection vulnerabilities or explicit malicious intent like data exfiltration or persistence.
- External report
- View on VirusTotal