Back to skill
Skillv1.0.0
VirusTotal security
Create Interesting Skills · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
ReviewMar 27, 2026, 10:36 AM
- Hash
- 050206d4352bcd9dd2e6b7903275c15b1629187edac1112cd1d6cf45d14a646f
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: create-interesting-skills Version: 1.0.0 This skill acts as an automated 'skill factory' that fetches untrusted content from public forums (Reddit, V2EX, Hacker News) and converts it into executable OpenClaw skills. It writes these generated skills to the local filesystem (`/projects/.openclaw/skills/`) and immediately executes them for 'demonstration' purposes. This workflow is highly vulnerable to Indirect Prompt Injection, where a malicious post on a monitored site could trick the agent into deploying and running harmful code, leading to potential data exfiltration or system compromise via the `exec` capability.
- External report
- View on VirusTotal