Back to skill
Skillv1.3.0
VirusTotal security
Handsfree Windows Control · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 30, 2026, 4:16 AM
- Hash
- 46d0ce796b34127f6d267136c372e86a59ad6f367a26c1922b3c61914551680f
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: handsfree-windows-control Version: 1.3.0 The skill bundle is classified as suspicious due to the installation of a tool (`handsfree-windows`) that provides powerful capabilities, including the ability to launch arbitrary applications (`hf start`), open arbitrary local paths (`hf open-path`), and execute arbitrary JavaScript within a browser context (`hf browser-eval`). While these capabilities are central to the skill's stated purpose of desktop and browser automation, they represent significant security risks if misused by the agent or through prompt injection. Additionally, the `setup.py` script performs a `git clone` from an external GitHub repository (`https://github.com/lijinlar/handsfree-windows.git`), introducing a supply chain risk, as the content of this external repository is not directly controlled within the bundle. Although the `SKILL.md` includes 'Core rules' advising caution (e.g., 'Do not type credentials', 'ask the human for confirmation'), the inherent broad permissions and execution capabilities warrant a 'suspicious' classification rather than 'benign'.
- External report
- View on VirusTotal