Back to skill
Skillv1.1.0
VirusTotal security
cftunnel · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
ReviewMar 23, 2026, 1:16 AM
- Hash
- 19e77ef6b38aee101324c4a78253b4eb79531bc7d821bcf909ed8b0a5d480bc7
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: cftunnel Version: 1.1.0 The skill provides a wrapper for Cloudflare Tunnels, enabling high-risk behaviors such as exposing local network services to the public internet and managing DNS records. It requires highly privileged credentials (CLOUDFLARE_API_KEY) and includes functionality for persistence through system service installation (`--install-service` in SKILL.md). While these capabilities are aligned with the tool's stated purpose, the inherent risk of bypassing firewalls and the potential for credential exposure or unauthorized network access via the agent justify a suspicious classification. Additionally, _meta.json contains an anomalous future-dated timestamp (March 2026).
- External report
- View on VirusTotal