Back to skill
Skillv1.2.0
VirusTotal security
Agent Skills Context Engineering · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 30, 2026, 4:46 AM
- Hash
- 9b9ae5f463d0b9d009c6aa835f4aa2510fd1d6f41387d1a4e868151cab1dd5ee
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: agent-skills-context-engineering Version: 1.2.0 The skill is classified as suspicious due to several high-risk capabilities that introduce significant vulnerabilities and supply chain risks. Specifically, `SKILL.md` and `README.md` instruct the agent to load and execute content from `https://raw.githubusercontent.com` URLs without explicit user approval for each load, especially for 'Auto-Read Triggers' which operate silently. Furthermore, `SKILL.md` instructs the agent to modify critical user configuration files (e.g., `AGENTS.md`, `TOOLS.md`) to add these auto-triggers, and `README.md` explicitly instructs the agent to execute a shell command (`git submodule update --init`). These actions demonstrate the agent's ability to fetch and execute external instructions, modify core configuration, and run shell commands, creating a broad attack surface for potential remote code execution or persistence if the upstream source is compromised.
- External report
- View on VirusTotal