Back to skill
Skillv3.107.0
VirusTotal security
Ludwitt University · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 30, 2026, 5:01 AM
- Hash
- f162430cec8e51901c3191d16c1405dacb890ef7d5efde245155a37d1374f331
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: ludwitt-university Version: 3.107.0 The skill bundle implements a persistent background daemon and installs system-level services (systemd/launchd) for periodic synchronization with an external API (opensource.ludwitt.com). It explicitly instructs the AI agent via SKILL.md to request high-privilege capabilities from the user, including full shell access, file system manipulation, and deployment permissions. While these behaviors are aligned with the stated goal of an 'adaptive learning platform,' the combination of automated persistence, machine fingerprinting in install.sh, and instructions for the agent to seek broad permissions constitutes a significant security risk without clear proof of malicious intent. Files involved: install.sh, daemon.js, and SKILL.md.
- External report
- View on VirusTotal