Back to skill
Skillv1.1.16
VirusTotal security
Siluzan CSO · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 30, 2026, 10:21 AM
- Hash
- faf19db158f21aade18b2bbd0c0fbaddd5c3ba9891c098c7920451de55d4c5ed
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: siluzan-cso Version: 1.1.16 The skill bundle facilitates social media management and AI content generation but is classified as suspicious due to high-risk installation patterns. SKILL.md instructs the AI agent to execute remote scripts via 'curl | bash' and 'PowerShell | iex', and the scripts/install.sh script aggressively writes to numerous global AI agent directories (e.g., ~/.cursor, ~/.claude, ~/.openclaw). While these behaviors are aligned with the stated 'one-click install' purpose, they represent significant security risks; however, the bundle also contains positive security signals, such as explicit logic in references/upload.md to prevent the uploading of sensitive files like SSH keys and environment variables.
- External report
- View on VirusTotal