Back to skill
Skillv2.9.1
VirusTotal security
Roundtable Adaptive · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 30, 2026, 4:27 AM
- Hash
- 860f8af00ae094f0aaa410357dfc50b644a04b86ddeeafcf9469f5acc84ee91d
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: roundtable-adaptive Version: 2.9.1 The skill is classified as suspicious due to critical prompt injection vulnerabilities. The user's input `[PROMPT]` is directly inserted into multiple AI prompt templates (`prompts/meta-panel.md`, `prompts/round1.md`, `prompts/round2-cross-critique.md`, `prompts/round3-validation.md`) without apparent sanitization. This allows a malicious user to inject arbitrary instructions into the AI models, potentially leading to unauthorized actions, data exfiltration (e.g., API keys via `env()` or `message()` actions), or remote code execution if the agent has access to shell commands. Additionally, the `[CURRENT_CONTEXT]` derived from `web_search(query = prompt)` also presents a potential vector for injecting malicious instructions via manipulated search results.
- External report
- View on VirusTotal