Back to skill
Skillv1.0.3
VirusTotal security
Workspace Casual Lucas · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 29, 2026, 3:47 AM
- Hash
- 8681f711aaf952fb15b25119336860f8ee364eafae11df15337bd85b7381bfb2
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: workspace-casual-lucas Version: 1.0.3 This skill is classified as suspicious due to severe vulnerabilities that allow arbitrary shell command execution and arbitrary file reading. The `index.js` file directly uses `child_process.execSync` and `fs.readFileSync` with unsanitized user input for the `run_command` and `open_file` functions, respectively. The `triggers.json` file directly exposes these functions to user input, making them exploitable for Remote Code Execution (RCE) and information disclosure. While there is no explicit code for data exfiltration, persistence, or other malicious intent, these critical vulnerabilities pose a significant security risk.
- External report
- View on VirusTotal