Back to skill
Skillv1.0.0
VirusTotal security
Security Audit · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 30, 2026, 5:51 AM
- Hash
- 99bf346d2dc539c5616135da73967c5a03565acc3a1786d642a7e6cd09651362
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: clawgears-security-audit Version: 1.0.0 The skill bundle acts as a bootstrap for an external security audit tool by cloning a remote repository (github.com/sunt23310-ops/openclaw-security-audit) and executing various shell scripts (audit.sh, credentials.sh, etc.) on the host system. While the stated purpose is a security audit, the instructions in SKILL.md direct the agent to download and run arbitrary code from a third-party source with access to sensitive domains like credentials, network configurations, and macOS system security (SIP/TCC). This pattern is highly risky as it facilitates remote code execution (RCE) without verifying the integrity of the external scripts, though no explicitly malicious logic is contained within the provided files.
- External report
- View on VirusTotal