Back to skill
Skillv1.0.0
VirusTotal security
Agents-Manager-and-IM · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 30, 2026, 5:37 AM
- Hash
- aebae83d409ca394e681b55588cecc5d24a9223d375b6a0452549195256b485d
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: agent-manager Version: 1.0.0 The skill bundle contains critical command injection vulnerabilities in 'server.js', 'server-gemini.js', and 'cli.js' due to the unsafe use of 'child_process.exec' with 'zsh'. User-provided messages are inadequately sanitized (only escaping double quotes), allowing for arbitrary command execution via shell subshells (e.g., using $() syntax). Additionally, the bundle includes a hardcoded sensitive 'openclawToken' in 'config.json' and 'server.js', and 'register-existing.js' performs broad file system operations in the user's home directory (~/.openclaw). While these risks are severe, they appear to be the result of poor security practices rather than intentional malice.
- External report
- View on VirusTotal