Back to skill
Skillv0.6.1
VirusTotal security
Mac Node Bridge · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 29, 2026, 5:04 AM
- Hash
- 2d9e75cf0a5c1c8e07ebd6a1dabaa2bd7c27c5169239f5853678cc053f3332e1
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: mac-node-bridge Version: 0.6.1 The skill bundle facilitates remote command execution (RCE) by generating SSH wrapper scripts on a Linux gateway to execute binaries on remote macOS nodes. Key scripts like scripts/install-wrapper.sh and scripts/install-preset.sh establish persistent remote execution paths and run dynamic bash payloads on remote hosts for path resolution. Although the implementation follows some security best practices (e.g., argument escaping and non-root recommendations in references/security-model.md), the provision of broad, cross-host shell access is an inherently high-risk capability that warrants a suspicious classification.
- External report
- View on VirusTotal