Back to skill
Skillv0.1.0
VirusTotal security
Model Advisor · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 30, 2026, 5:41 AM
- Hash
- ea53b8b0be08bcc4054be9e7e9921017ef7effd098cfabb22238d7aec6f9e57b
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: model-advisor Version: 0.1.0 The skill performs broad read operations on sensitive local files, including the main OpenClaw configuration (openclaw.json) and the entire directory of session history logs (.jsonl), to calculate security scores and analyze user task patterns. While these capabilities are plausibly required for the stated purpose in SKILL.md and scripts/advisor.js, the access to private conversation history and gateway settings constitutes a high-risk behavior. The script does not contain evidence of data exfiltration or remote code execution, but it provides a mechanism for the agent to ingest and potentially expose sensitive historical data.
- External report
- View on VirusTotal