Back to skill
Skillv1.0.0
VirusTotal security
cz-studio-agent · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
ReviewApr 30, 2026, 5:04 AM
- Hash
- b0ea2383429c337099ea7011eaffab39ae59c86b9fcec66a40b88d241040cdbf
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: cz-studoio-agent Version: 1.0.0 The skill is designed to bridge OpenClaw to a remote Studio Agent via WebSocket. While the code is well-structured and generally follows secure practices for handling user input (passing as JSON to stdin) and configuration (embedding tokens in URLs, not persisting them as separate env vars by default), the `scripts/cz-agent-proxy.mjs` script includes an `auto_approve` feature for `interrupt_request` events (tool calls) by default. This means the proxy will automatically approve tool execution requests from the remote Studio Agent. This represents a significant trust assumption and a potential vulnerability if the remote Studio Agent is compromised or untrusted, as it could lead to unauthorized actions being performed by the local agent. There is no evidence of intentional malice such as data exfiltration to unauthorized endpoints or backdoor installation.
- External report
- View on VirusTotal