Back to skill
Skillv1.0.0
VirusTotal security
Incident Fupan (事故复盘) — Structured Root Cause Analysis · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 28, 2026, 4:58 AM
- Hash
- 5c7b0171152120e82684a8a409e5b48b3188f88ec48c6a37510e188f2392e8e9
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: incident-fupan Version: 1.0.0 The skill is classified as suspicious due to multiple critical vulnerabilities. The `SKILL.md` file contains instructions for the agent to execute shell commands (`grep`, `git log`, `git diff`, `systemctl status`, `ps aux`) using `exec()`. If the arguments to these commands (`{logfile}`, `{service}`, `{process}`) are derived from untrusted user input without sanitization, this creates a direct shell injection vulnerability (RCE risk). More critically, the `SKILL.md` explicitly instructs the agent to `update AGENTS.md, TOOLS.md, or relevant skill with new rules`. This is a significant prompt injection vulnerability, as an attacker could craft an incident report that tricks the agent into generating and then applying malicious 'rules' to its own configuration or other skills, potentially leading to persistence, altered behavior, or unauthorized actions within the agent's environment.
- External report
- View on VirusTotal