Back to skill
Skillv1.1.5
VirusTotal security
Kalshalyst · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 30, 2026, 5:54 AM
- Hash
- 9f5c3e435f0fa534ed428daa89df057a0f970098ecb636d230976a141ecdc7ed
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: kalshalyst Version: 1.1.5 The bundle contains high-risk instructions in SKILL.md (Agent Bug-Fix Protocol) that command the AI agent to perform self-modification of its own Python source code on the host filesystem, creating a significant path for persistent RCE via prompt injection. claude_estimator.py utilizes subprocess.run to execute local CLI binaries, and auto_trader.py includes functionality to exfiltrate trade data to a Slack webhook. While these features support the stated goal of an autonomous trading system, the combination of self-modifying code instructions and local execution capabilities represents a dangerous attack surface.
- External report
- View on VirusTotal