Skillv1.0.0

VirusTotal security

20206 02 10 Clawhub Summarize 1.0.0 · External malware reputation and Code Insight signals for this exact artifact hash.

SuspiciousApr 29, 2026, 3:48 AM

Hash: 6657a764de938057c558600c36ce0fc14b444f961e45fe4b37fbd1c28e01f07d
Source: palm
Verdict: suspicious
Code Insight: Type: OpenClaw Skill Name: 20206-02-10-clawhub-summarize-1-0-0 Version: 1.0.0 The skill bundle instructs the OpenClaw agent to install the `summarize` CLI tool via Homebrew from a third-party tap (`steipete/tap/summarize`) as specified in `SKILL.md`. While this action is aligned with the skill's stated purpose, it introduces a supply chain risk by instructing the agent to fetch and execute external code from an arbitrary third-party source. This represents a significant vulnerability surface, classifying it as suspicious due to risky capabilities without clear malicious intent within the skill bundle itself.
External report: View on VirusTotal