Back to skill
Skillv1.4.0
VirusTotal security
Architecture Inventory & Risk Assessment · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
ReviewMar 24, 2026, 4:26 AM
- Hash
- 13173e3d46c6e10596587413d8ede0b2966a8dba9cf3946f5155694aa14284d0
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: architecture-inventory-risk-assessment Version: 1.4.0 The skill bundle provides legitimate Tencent Cloud Advisor integration but contains several high-risk indicators. It requests significant IAM permissions (cam:CreateRole, sts:AssumeRole) and instructs the agent to persist sensitive API secrets in shell configuration files (~/.bashrc). Most concerning is the inclusion of internal development scripts (start_publish.sh, view_publish_log.py) and a detailed guide (PUBLISH_GUIDE.md) that explicitly describes how to bypass ClawHub's anti-spam and anti-template protections established after the 'ClawHavoc' supply chain attack. While no direct data exfiltration to third-party domains was identified, the presence of platform-evasion documentation and the capability to generate console login URLs (login_url.py) warrant a suspicious classification.
- External report
- View on VirusTotal