Back to skill
Skillv1.0.0
VirusTotal security
Clawhub Skill Bandwidth Income · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
ReviewMay 1, 2026, 4:37 AM
- Hash
- 1261f4b074a1ea783aa276caf551bbbb5d0f713a3c19459d9ceca96bda48fcf4
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: clawhub-skill-bandwidth-income Version: 1.0.0 The skill is classified as suspicious due to its reliance on high-risk capabilities, even though they align with its stated purpose. It extensively uses the `exec` tool to run Docker commands, which involve elevated privileges (e.g., `--cap-add NET_ADMIN` for Mysterium Network in `SKILL.md`), exposes network ports, mounts host volumes, and handles sensitive user credentials (email, password, wallet addresses) as environment variables for containers. While the `SKILL.md` instructions do not show prompt injection attempts or direct malicious intent, the inherent risks associated with deploying and managing network-facing services with such permissions warrant a 'suspicious' classification.
- External report
- View on VirusTotal