Back to skill
Skillv1.1.0
VirusTotal security
Security Audit · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
BenignApr 29, 2026, 4:01 AM
- Hash
- a18caee5b04c221b1b677827ae6582497a95c3d9b9a6421330f8e208140505b2
- Source
- palm
- Verdict
- benign
- Code Insight
- Type: OpenClaw Skill Name: arc-security-audit Version: 1.1.0 The 'arc-security-audit' skill is designed to perform security assessments of other OpenClaw skills. The `SKILL.md` provides clear, benign instructions without any prompt injection attempts. The `scripts/audit.py` script uses standard Python libraries, handles paths securely with `os.path.realpath` to prevent path traversal, and carefully manages `sys.path` to only load modules from expected sibling skill directories (`skill-scanner`, `trust-verifier`). It generates local reports and attestations without any evidence of data exfiltration, unauthorized network activity, persistence mechanisms, or malicious execution. The code's structure and security-conscious path handling align with its stated purpose as a security auditing tool.
- External report
- View on VirusTotal