Back to skill
Skillv1.1.0
VirusTotal security
Shadows Deploy Guardian · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 29, 2026, 5:22 AM
- Hash
- 7f7d9ec544e0b361f7adf55691e16f27f1e3af5d47018d8717acd83e4f14920b
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: shadows-deploy-guardian Version: 1.1.0 The skill provides a pre-deployment verification framework that executes high-risk operations, including running arbitrary project scripts (e.g., 'npm test', 'cargo build') and making outbound network requests via 'curl' to user-defined URLs in SKILL.md. While these actions are clearly aligned with the stated purpose and the documentation includes explicit security warnings regarding sandboxing and secret exposure in logs, the inherent risk of remote code execution and network access from untrusted repositories meets the threshold for a suspicious classification.
- External report
- View on VirusTotal