Back to skill
Skillv1.0.3
VirusTotal security
Veeam MCP · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
ReviewMay 1, 2026, 3:28 AM
- Hash
- 7839521b75991d20900c5f33ace8b598066c77c7a7ef7882ca6fde9c0ab9c497
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: Developer: Version: Description: OpenClaw Agent Skill Suspicious High-Entropy/Eval files: 4 The skill is classified as suspicious due to its handling of highly sensitive Veeam administrator credentials. These credentials (URL, username, password) are read from a local file (`~/.veeam-mcp-creds.json`) and then passed directly as environment variables to `docker run` commands for the `veeam-intelligence-mcp-server` container in `scripts/list-tools.sh`, `scripts/query-veeam.sh`, `scripts/start-mcp.sh`, and `scripts/test-connection.sh`. While this is a common Docker pattern, it exposes credentials to the container's environment and potentially to other processes on the host during execution. Additionally, the skill relies on a user-sourced, beta `veeam-intelligence-mcp-server` Docker image, whose internal behavior is outside the control of this skill bundle, introducing a supply chain risk. There is no evidence of prompt injection against the OpenClaw agent or other malicious intent within the provided files.
- External report
- View on VirusTotal