Back to skill
Skillv1.0.0
VirusTotal security
Resilient File Delivery · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
ReviewApr 30, 2026, 3:42 AM
- Hash
- 264c2f5cfcdcea7821d1c27d816492e881a0ae938b536445a84deeff0f86b2f3
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: resilient-file-delivery Version: 1.0.0 This skill is classified as suspicious due to its powerful capabilities that, while potentially legitimate, present a significant risk for data exfiltration and unauthorized file transfer if misused. The skill explicitly allows reading arbitrary local files (e.g., `file: '/path/to/file.zip'`) and sending them via multiple external channels (Telegram, Discord, Google Drive, S3, IPFS), as detailed in `SKILL.md` and `README.md`. The repeated claim of 'Bypass sandbox restrictions' further highlights its potential to circumvent security controls. While there's no direct evidence of malicious intent by the developer, the combination of arbitrary file access and multi-channel exfiltration capability makes it a high-risk tool that could be exploited for sensitive data theft if an attacker can control the input to the skill.
- External report
- View on VirusTotal