Back to skill
Skillv1.0.0
VirusTotal security
Swarm Mind · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
ReviewMay 1, 2026, 3:59 AM
- Hash
- 336fd2d2cb97b6a7c43711003d084f4322f8a51c930cec4da2e4601876a38557
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: swarmind Version: 1.0.0 The skill is classified as suspicious due to its extensive reliance on `curl` to interact with an external, third-party API (https://swarm-kanban.vercel.app/api). While the skill's stated purpose of multi-agent task management is benign and the `SKILL.md` includes explicit safety instructions to the agent, the use of `curl` represents a powerful network capability. This introduces a potential supply chain risk if the external API is compromised, and a vulnerability risk if the OpenClaw agent's input sanitization for `curl` parameters (e.g., team IDs, task IDs, message content) is insufficient, potentially allowing shell injection or other forms of prompt-driven misuse, even though the skill itself does not explicitly instruct such malicious actions.
- External report
- View on VirusTotal