Back to skill
Skillv1.0.0
VirusTotal security
Securely interact with Bitwarden/Vaultwarden vaults using rbw CLI. Use when retrieving credentials, managing vault items, or integrating secrets into scripts/systemd services. Handles authentication, field access, and non-interactive operation patterns. · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 30, 2026, 4:33 AM
- Hash
- 7f816579fd8a0f6325ff170268f3547ba7d9db404f9cc0ac769f1ecbb5097344
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: rbw Version: 1.0.0 The skill bundle is designed to interact with the `rbw` CLI for Bitwarden/Vaultwarden. While its primary purpose is legitimate, the `SKILL.md` documentation provides explicit instructions for a non-interactive authentication method that involves storing the master password in plaintext within `/etc/systemd/rbw-credentials.conf` and using a custom `pinentry` script. Although the documentation includes a 'Security note' warning about this trade-off, instructing an AI agent to implement such a configuration constitutes a significant security risk, making the skill suspicious due to promoting a high-risk vulnerability.
- External report
- View on VirusTotal