Back to skill
Skillv0.1.0
VirusTotal security
Mac Compute Use · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 30, 2026, 4:51 AM
- Hash
- 8a97739c858b96c610db49ee2f8d76e2b21cd82dafbc406daa76226be058c199
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: mac-compute-use Version: 0.1.0 This skill is classified as suspicious due to its reliance on installing software (`mcp-server-macos-use`) from a custom, unverified Homebrew tap (`reedburns/mcp-server-macos-use`) as seen in `SKILL.md` and `scripts/setup.sh`, which introduces a supply chain risk. Furthermore, the skill explicitly requires the user to grant extensive macOS Accessibility permissions to the installed binary, giving it the capability to control the GUI, read screen content, and simulate user input across all applications. While these high privileges are necessary for its stated purpose of macOS GUI automation, they represent a significant security risk if the agent or the underlying `mcp-server-macos-use` binary were compromised or misused, despite no direct evidence of malicious intent within the provided files.
- External report
- View on VirusTotal