Back to skill
Skillv2.0.1
VirusTotal security
N8n Operator · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 21, 2026, 3:56 AM
- Hash
- 6e164d72b2a516f43ec3163f52560b448516e5fbe339bddf1f48e3494836d578
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: n8n-operator Version: 2.0.1 The skill bundle provides a comprehensive toolkit for managing n8n workflows via REST API, including Python scripts for API interaction (n8n_api.py) and performance analysis (n8n_optimizer.py). It is classified as suspicious because it contains instructions in SKILL.md and references/desktop-write.md that encourage high-risk system configurations, such as running Docker containers as root (user: '0:0'), bypassing n8n sandboxes to write directly to the host's desktop, and directing the AI agent to manually edit local configuration files at specific hardcoded paths (C:\Users\lujun\.openclaw\cron\jobs.json). While these capabilities are aligned with the stated purpose of advanced workflow automation, they introduce significant security risks and represent a broad attack surface if the agent is exploited via prompt injection.
- External report
- View on VirusTotal