Back to skill
Skillv1.0.2
VirusTotal security
Lerwee API Skill · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 29, 2026, 5:47 AM
- Hash
- 3d28adce123b22612d17501fc5cbd6d2d07ead65c5801471a6564dccd963cd89
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: lerwee-api Version: 1.0.2 The skill bundle provides a comprehensive API integration for the Lerwee (乐维) IT monitoring system, including a Python client (lerwee_api.py) and extensive documentation. It contains high-risk capabilities such as remote script execution on monitored hosts (/devops/run-script), file distribution, and the handling of SSH credentials for automated agent installation (/detection/agent-batchinstall). While these features are consistent with the stated purpose of an enterprise monitoring and automation platform, they represent a significant attack surface for remote code execution and credential exposure. No evidence of intentional malice, data exfiltration, or prompt injection was found.
- External report
- View on VirusTotal