Back to skill
Skillv1.0.0
VirusTotal security
Red Team · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 30, 2026, 4:46 AM
- Hash
- 53a7326489ebf7ce021bfec5801d417f79d500adf9a4c638c9c3f470ca070eca
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: red-team Version: 1.0.0 The skill is classified as suspicious due to the significant prompt injection surface against the underlying Large Language Models (LLMs). User-controlled inputs, particularly the `system` prompts defined in custom persona JSON files and the `question` and `context` arguments, are directly fed to the LLMs via `subprocess.run` calls in `scripts/red-team.py`. While the script itself does not exhibit malicious host-system behavior (e.g., data exfiltration, unauthorized command execution, or persistence), this design allows a malicious user to manipulate the LLM's behavior, potentially leading to the generation of harmful content, ignoring instructions, or other unintended AI actions. The broad file read/write capabilities (`--context-file`, `--output`) are used for the stated purpose and do not show malicious intent.
- External report
- View on VirusTotal