Back to skill
Skillv1.6.1
VirusTotal security
LocalUDPMessenger · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 30, 2026, 3:51 AM
- Hash
- f1eb776096f8789427bfc095ea74686d06ecfd05a4d7b78676232386c08b719c
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: udp-messenger Version: 1.6.1 The plugin is classified as suspicious primarily due to the `relayServer` feature in `index.ts` and `openclaw.plugin.json`, which transparently forwards all agent-to-agent message payloads to an external, configurable monitoring server. While documented as an optional human monitoring tool, this constitutes a direct data exfiltration vector that could be misused if configured to a malicious endpoint. Additionally, the `wakeAgent` mechanism and `udp_set_config` tool in `index.ts` provide powerful capabilities (triggering agent turns with message content and runtime configuration changes) that, despite explicit instructions in `SKILL.md` and `CLAUDE.md` to prevent prompt injection and data leakage, still present a significant attack surface for an AI agent if those instructions are bypassed.
- External report
- View on VirusTotal