Back to skill
Skillv0.1.0
VirusTotal security
Brainstorming · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
ReviewMay 1, 2026, 4:12 AM
- Hash
- 013d4db4a92bee5f328834372299b8d9ae7d8eac38d5a98607e7b9b58ee25248
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: brainstorming-2 Version: 0.1.0 The skill's primary function is benign, focused on design brainstorming and documentation. However, the instruction in `SKILL.md` to save a design document to `docs/design/YYYY-MM-DD-feature-name.md` introduces a potential path traversal vulnerability. If the `feature-name` is derived directly from unsanitized user input, an attacker could craft a malicious filename (e.g., `../../../../etc/malicious_file`) to write files to arbitrary locations on the agent's filesystem. This is a vulnerability, not explicit malicious intent, classifying it as suspicious.
- External report
- View on VirusTotal