Back to skill
Skillv1.0.0
VirusTotal security
Config Monitor · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 29, 2026, 2:46 PM
- Hash
- 91e7adaf6de69e1f72cee7f06daa32e744e6e2495a1e1b730e1c5a52a2e9990f
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: config-monitor Version: 1.0.0 The skill documentation describes a configuration monitoring and backup management system that requires high-risk capabilities, including file deletion (rm), log analysis via shell pipes, and persistence through cron jobs. While these actions are aligned with the stated administrative purpose, the SKILL.md file contains instructions for potentially unsafe shell patterns (e.g., 'ls | xargs rm' for backup rotation) that are vulnerable to shell injection. Because the actual logic in 'config-monitor.sh' is not provided and the instructions involve high-risk system interactions, it is classified as suspicious.
- External report
- View on VirusTotal