Back to skill
Skillv2.0.0
VirusTotal security
Intent Align · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 30, 2026, 4:38 AM
- Hash
- 6ad56c791e9e6dc2fcadb30dfdd61a33b114a96fe0f30cdd433aef33eb8a4894
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: intent-align Version: 2.0.0 The skill bundle is classified as suspicious due to its explicit declaration of high-risk capabilities, particularly local command/tool execution and extensive file system access, which, while stated as necessary for its intended purpose, present a significant vulnerability surface. Specifically, `references/adapters/local-repo.md` states 'Require command/tool execution permission where needed' and 'Run local verification steps when available'. Additionally, `references/adapters/adapter-template.md` and `references/core-contract.md` define `tool_access_required` for adapters, confirming the agent's design to utilize various tools. While there is no direct evidence of malicious intent (e.g., exfiltration, backdoors, or prompt injection for harmful objectives) within the provided files, these broad capabilities could be easily exploited for arbitrary code execution or unauthorized actions if the agent's inputs are not rigorously sanitized or if it is compromised.
- External report
- View on VirusTotal