Skillv1.0.0

VirusTotal security

incident-responder · External malware reputation and Code Insight signals for this exact artifact hash.

ReviewMay 1, 2026, 1:56 PM

Hash: da77491887c0f623262cd935f16b20f5e2b3647cd4706c9d93031760c6e5785e
Source: palm
Verdict: suspicious
Code Insight: Type: OpenClaw Skill Name: ah-incident-responder Version: 1.0.0 The skill bundle provides a comprehensive toolkit for incident response, including high-risk system operations such as packet captures (tcpdump), process debugging (gdb, strace), and Kubernetes execution. While these align with the stated persona, references/examples.md contains a Python automation script that utilizes shell=True with string formatting, creating a shell injection vulnerability. Additionally, the script includes commands to modify system state, such as clearing kernel caches and vacuuming logs, which could be disruptive if misused.
External report: View on VirusTotal