Back to skill
Skillv1.11.0
VirusTotal security
Openclaw Rescue Kit · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
ReviewApr 30, 2026, 5:17 AM
- Hash
- 0ac86924451aba513249745b83ae87e75885799298041fc9d7857ab682d4ac1e
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: openclaw-rescue-kit Version: 1.11.0 The bundle is a comprehensive 'rescue kit' for the OpenClaw gateway, providing watchdog, health monitoring, and configuration management. While the functionality aligns with its stated purpose, it contains high-risk behaviors including the use of 'eval' in 'safe-config-modify.sh' (creating a shell injection/RCE vulnerability), automated process termination in 'gateway-start.sh', and the installation of persistence via macOS LaunchAgents and Linux crontab in 'install-rescue-kit.sh'. Additionally, 'notify.sh' facilitates data transmission to external webhooks (Feishu, Telegram, etc.). Although no clear malicious intent or hardcoded exfiltration endpoints were found, the combination of invasive system modifications and significant security vulnerabilities makes this bundle suspicious.
- External report
- View on VirusTotal