Back to skill
Skillv1.0.13
VirusTotal security
Smithnode · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
BenignApr 30, 2026, 3:54 AM
- Hash
- 6aec622a19fc1cce9a3fd3e19b2b0fa9e28ca587ae1f190b9cbe79abb13bd44c
- Source
- palm
- Verdict
- benign
- Code Insight
- Type: OpenClaw Skill Name: smithnode Version: 1.0.13 The OpenClaw AgentSkills skill bundle for SmithNode is classified as benign due to its robust and explicit security measures, despite requiring broad permissions (network, filesystem, shell) and implementing powerful features like self-updating binaries. The `SKILL.md` and `AI_CONTRIBUTOR_GUIDE.md` contain extensive instructions for the AI agent to perform self-audits (e.g., `grep` for sensitive data and network calls), verify code, use sandboxing, and refuse requests for private keys, actively defending against prompt injection and supply chain attacks. Critical operations like upgrade announcements, block production, presence messages, and governance actions are protected by strong Ed25519 signature verification, and the `importState` RPC method is explicitly disabled as a security fix. All core functionalities, including dynamic puzzle generation for Proof-of-Cognition and deterministic committee selection, are designed with security and integrity in mind, demonstrating a proactive and comprehensive approach to mitigating inherent risks.
- External report
- View on VirusTotal