Back to skill
Skillv1.0.0
VirusTotal security
OpenClaw Sacred Rules · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 30, 2026, 4:34 AM
- Hash
- bc3c9defce7ea94e79615d0e5d7f0f339acbb62e648eb072a985d1ee2d8b98ce
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: openclaw-sacred-rules Version: 1.0.0 The skill bundle aims to provide safety rules and recovery procedures for OpenClaw configuration, which is a benign purpose. However, the `scripts/reset_cooldowns.sh` script contains a hardcoded absolute path (`/Users/admin/.openclaw/...`) for a critical configuration file, making it non-portable and prone to failure on systems where the user's home directory is different. Similarly, a Python snippet in `references/recovery.md` uses an unexpanded `$HOME` variable within a string, which would also lead to execution failure. These are significant functional vulnerabilities in critical recovery scripts, classifying the bundle as suspicious due to potential operational failures rather than malicious intent.
- External report
- View on VirusTotal