Back to skill
Skillv1.0.0
VirusTotal security
Safe Exec Wrapper · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
BenignApr 30, 2026, 3:25 AM
- Hash
- eedc5e3e9302da98ccd97d2549ce6749065f1dad152f7ef86725eb9c523e0116
- Source
- palm
- Verdict
- benign
- Code Insight
- Type: OpenClaw Skill Name: Developer: Version: Description: OpenClaw Agent Skill Suspicious High-Entropy/Eval files: 1 The OpenClaw AgentSkills skill bundle 'openclaw-safe-exec' is designed as a security measure to protect LLM agents from prompt injection via untrusted command output. The `SKILL.md` documentation clearly outlines this defensive purpose, instructing the agent to wrap potentially untrusted commands with `safe-exec`. The `scripts/safe-exec.sh` script implements this by generating unique UUID boundaries, printing a security preamble that explicitly warns the agent against following instructions within the boundaries, and then executing the specified command while wrapping its stdout/stderr. There is no evidence of malicious intent, data exfiltration, unauthorized execution, persistence, or prompt injection attempts against the analyzing agent; instead, the skill actively aims to prevent such attacks.
- External report
- View on VirusTotal