Back to skill
Skillv1.0.1
VirusTotal security
opsrobot安装配置助手 · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 22, 2026, 9:26 AM
- Hash
- 1756654d56dcc46e29efbe15b2ed5efdf42822e55d2c215b3e4f7f7cf8d93b48
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: opsrobot Version: 1.0.1 The skill instructs the agent to perform high-risk operations, including cloning an external repository (github.com/opsrobot-ai/opsrobot) and executing 'docker compose' and 'vector' commands, which could lead to arbitrary code execution. It also includes a hardcoded private IP address (192.168.72.87) in the OpenTelemetry configuration within SKILL.md, which might redirect system metrics and logs to an unauthorized endpoint if not modified by the user. While these actions are consistent with the stated purpose of setting up an observability platform, the reliance on external, unverified scripts and hardcoded network targets poses a significant security risk.
- External report
- View on VirusTotal