Back to skill
Skillv3.0.0
VirusTotal security
Crash Fixer · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 29, 2026, 4:29 AM
- Hash
- 338b341c90af745c98fa76a736d89465c7efaaf1cb3b73a79ae320ff1a114271
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: crash-fixer Version: 3.0.0 The skill is classified as suspicious due to its high-risk capabilities and a critical prompt injection vulnerability. It uses a GitHub token (`GH_TOKEN`) to read, create branches, commit AI-generated code, and create pull requests in a target repository (`TARGET_REPO`), effectively allowing it to modify source code. The `analyzeCrash` function in `index.js` constructs an AI prompt using raw, unsanitized crash data (e.g., `errorName`, `message`, `stackTrace`). A malicious actor could submit a crafted crash report containing prompt injection instructions, leading the AI to generate malicious `fix_code` or specify an arbitrary `file_path`, which the skill would then commit to the target repository. This represents a significant supply chain risk and potential for remote code execution via AI manipulation.
- External report
- View on VirusTotal