Back to skill
Skillv0.1.5
VirusTotal security
Agentsec · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 28, 2026, 6:16 PM
- Hash
- 583d77a95c48a51270cd12bfa8d818d14a2ca79b4fe536330949739cf0105340
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: agentsec Version: 0.1.5 The agentsec skill bundle describes a security auditing tool that performs broad filesystem discovery across sensitive directories (e.g., ~/.claude, ~/.openclaw, ~/.agents) to scan for vulnerabilities. While its behavior aligns with the stated purpose of a security scanner, it encourages the execution of remote code via 'npx agentsec' and requests high-privilege access to private agent configurations and workspace files. The lack of explicit data exfiltration logic in the provided text prevents a malicious classification, but the extensive scanning of home directories and the future-dated timestamp in _meta.json are notable risk indicators.
- External report
- View on VirusTotal