Back to skill
Skillv1.0.0
VirusTotal security
Multi Site Health Monitor · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
ReviewMay 1, 2026, 8:33 AM
- Hash
- c7b4abe9b589be52d8b4678d9ba077a467dbc78e47857fd8f16b2dd3b2d211d0
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: multi-site-health-monitor Version: 1.0.0 The skill bundle (SKILL.md) requests an extensive list of highly sensitive credentials, including AWS_SECRET_ACCESS_KEY, SSH_PRIVATE_KEY, and various API keys for PagerDuty, Datadog, and Slack. It instructs the AI agent to perform high-risk operations such as remote shell execution via SSH and infrastructure manipulation (AWS EC2 restarts) under the guise of a 'Multi-Site Health Monitor.' While these capabilities are plausibly related to automated incident response, the combination of extreme privilege requirements, the lack of actual implementation code (relying on the agent to use curl/jq), and the 'empire-skills' naming convention (potentially referencing post-exploitation frameworks) presents a significant security risk.
- External report
- View on VirusTotal