Back to skill
Skillv1.1.0
VirusTotal security
Hackathon Manager · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 29, 2026, 3:43 AM
- Hash
- da5e014a7c984405fc773d2e5fb7a85c536db9893f7f75205854992142cc4b25
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: hackathon-manager Version: 1.1.0 The skill is classified as suspicious due to a significant potential for remote code execution (RCE) via shell injection, stemming from the interaction between the AI agent and the `scripts/manager.py` script. The `SKILL.md` instructs the agent to use `web_fetch` to extract information from untrusted URLs and then pass this extracted data directly to `scripts/manager.py`'s `add` command. The `manager.py` script takes these arguments directly from `sys.argv`. If the AI agent does not properly sanitize the extracted, untrusted data before constructing the shell command to execute `scripts/manager.py`, an attacker could inject arbitrary shell commands. Additionally, `scripts/manager.py` executes an external CLI tool (`gog`) via `subprocess.run` with arguments derived from user-controlled hackathon names, introducing a supply chain risk and another potential attack surface if `gog` itself has vulnerabilities or if the agent's initial command construction is flawed. While the skill itself does not exhibit explicit malicious intent (e.g., data exfiltration, persistence), these vulnerabilities present a high-risk capability.
- External report
- View on VirusTotal