Back to skill
Skillv1.0.0
VirusTotal security
Clash Controller · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
ReviewApr 30, 2026, 6:25 AM
- Hash
- 9bcde6db7e8f685beb85090af7c9dc79ab92b99e36a7b96c14cf9d0fdd82faf7
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: clash-controller Version: 1.0.0 The skill automates the installation and management of Clash/mihomo proxies by downloading and executing scripts from an external GitHub repository (nelvko/clash-for-linux-install) via a third-party proxy (gh-proxy.org). While these actions align with the stated purpose, the pattern of fetching and running remote shell scripts (install.sh) and requesting root privileges for Tun mode presents a high-risk execution flow that could be exploited if the remote source is compromised. The instructions also include hardcoded local paths (SKILL.md).
- External report
- View on VirusTotal