Back to skill
Skillv2.0.0
VirusTotal security
Agent Recruiter · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
ReviewApr 30, 2026, 6:36 AM
- Hash
- 7b54c0f7b18aa11eecaee8281cf7fb88ac6e8005fbdf1c5e6b235749cbf36372
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: agent-recruiter Version: 2.0.0 The agent-recruiter skill bundle provides automated tools for creating and managing OpenClaw agents, which involves high-risk operations. The primary script, 'recruit-agent.sh', performs shell-based system modifications, including copying sensitive credential files (auth-profiles.json and models.json) from existing agents and using inline Node.js execution to modify the global 'openclaw.json' configuration. While these actions are consistent with the stated goal of agent management, the practice of cloning credentials and restarting system services (gateway restart) constitutes a significant security risk and potential for abuse if the agent is misdirected.
- External report
- View on VirusTotal