Back to skill
Skillv3.0.2
VirusTotal security
Linux Patcher · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
ReviewMay 1, 2026, 3:29 AM
- Hash
- f3d0bbe02317bcbf7e53b778e1be6312c76116329eceb17b9f5fe9f644d487c9
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: Developer: Version: Description: OpenClaw Agent Skill Suspicious High-Entropy/Eval files: 7 The skill is designed for automated Linux server patching and Docker container updates, which inherently involves high-risk operations like remote SSH execution with passwordless sudo and handling API credentials. While the documentation (SKILL.md, SETUP.md) is transparent about these security implications, recommends least privilege for sudo, and instructs users to secure credentials (e.g., `chmod 600 ~/.patchmon-credentials.conf`), the core functionality requires broad system access and network communication to a user-defined PatchMon instance. The `scripts/patchmon-query.sh` script handles user-provided credentials and makes external API calls, and `scripts/patch-multiple.sh` sources external configuration files, which are high-risk capabilities, even if justified by the stated purpose. There is no clear evidence of intentional malicious behavior or prompt injection attempts against the agent beyond the stated purpose.
- External report
- View on VirusTotal