Back to skill
Skillv0.1.0
VirusTotal security
Cluster Agent Swarm · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 29, 2026, 4:54 AM
- Hash
- 7c16f3debf16359b5b9541eeb29d16007c0f16b5590c95d29f510ad9825e87e8
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: cluster-agent-swarm-skills Version: 0.1.0 The skill bundle defines an AI agent with extremely broad and powerful capabilities, including access to critical command-line tools such as `kubectl`, `oc`, `az`, `aws`, `gcloud`, `curl`, and `git` as listed in `SKILL.md`. While the `SKILL.md` explicitly outlines 'What Agents CANNOT Do' to provide guardrails, the combination of these powerful tools and broad 'CAN Do' capabilities (e.g., 'Provision standard resources', 'Execute pre-approved runbooks') creates a significant attack surface. A malicious prompt could potentially exploit the agent's interpretation of these capabilities to perform unauthorized actions, data exfiltration via `curl`, or resource manipulation/deletion using the cloud provider CLIs, despite the stated restrictions. This represents a high-risk vulnerability surface rather than direct malicious intent within the provided instructions.
- External report
- View on VirusTotal