Back to skill
Skillv1.0.0
VirusTotal security
Todolist Md Clawdbot · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
ReviewMay 1, 2026, 4:02 AM
- Hash
- 58a25816cd1db657d1a33db9bdcc14af43fe0f0ac3367efe43245893ba9eab3b
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: Developer: Version: Description: OpenClaw Agent Skill The skill bundle is classified as suspicious due to several risky capabilities and potential vulnerabilities, though without clear evidence of intentional malicious behavior. The `SKILL.md` defines `<!-- bot: ... -->` markers as instructions for the AI agent, creating a prompt injection surface. The `todolist_review_drive.py` script inserts `root_folder_id` and `model` values directly into `<!-- bot: last_review -->` markers; if these values are user-controlled and untrusted, they could be exploited for prompt injection. Additionally, both `todolist_drive_folder_agent.mjs` and `todolist_review_drive.py` execute external `gog` commands using `sudo -u ubuntu`, indicating the agent has `sudo` capabilities and executes commands as a different user. While argument passing is robust against shell injection, the use of `sudo` and external binaries represents a powerful primitive that, if misconfigured or if the `gog` binary itself were compromised, could lead to unauthorized execution. There is no evidence of data exfiltration to unauthorized endpoints, backdoors, or obfuscation.
- External report
- View on VirusTotal