Back to skill
Skillv1.2.0
VirusTotal security
Vinculum - Shared Consciousness · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
BenignMay 1, 2026, 3:09 AM
- Hash
- 615677fbe7792d6695cad7d7ca3a841b4f68d456bcf36af1c2b8fe797ae5acd1
- Source
- palm
- Verdict
- benign
- Code Insight
- Type: OpenClaw Skill Name: vinculum Version: 1.2.0 The OpenClaw AgentSkills skill bundle 'vinculum' is designed for shared consciousness between Clawdbot instances using Gun.js P2P sync over a local network. The code and documentation clearly align with this stated purpose. It uses standard Node.js practices for managing a local relay daemon (e.g., `child_process.spawn` in `scripts/commands/relay.js` and `scripts/index.js` to run `scripts/relay-simple.js`), persistent configuration (`~/.config/clawdbot/vinculum.yaml`), and data storage (`~/.local/share/clawdbot/vinculum`). The `SKILL.md` and `README.md` explicitly state that sensitive data like `USER.md`, `SOUL.md`, and credentials are NOT shared. There is no evidence of data exfiltration, malicious execution, persistence mechanisms beyond the daemon's PID file, obfuscation, or prompt injection attempts to subvert the agent's core directives or access unrelated sensitive data. All file and network access is directly related to the skill's functionality.
- External report
- View on VirusTotal