Back to skill
Skillv0.2.0
VirusTotal security
swamp · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 30, 2026, 4:18 AM
- Hash
- c667c1131d53ba8c2764496a802601673b763c16e94c7dbd68642f37adb6ed9e
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: swamp Version: 0.2.0 The skill is classified as suspicious due to the broad capabilities granted to the AI agent, specifically the ability to interact with a remote extension registry. While the `.claude/settings.local.json` file restricts the agent to only `swamp auth` and `swamp extension` commands, these still pose significant risks. `swamp auth login` allows network communication for authentication, potentially exposing credentials if misused. More critically, `swamp extension pull` enables the agent to download arbitrary content from a remote server, and `swamp extension push` allows the agent to publish content to a public registry, creating a direct supply chain attack vector if the agent is prompted to upload malicious extensions. The `SKILL.md` also describes highly privileged operations like executing arbitrary shell commands via `swamp model method run` and publishing new skills to ClawHub, which are not currently permitted but highlight the inherent power and potential for misuse of the underlying `swamp` tool.
- External report
- View on VirusTotal