Back to skill
Skillv1.0.0
VirusTotal security
快速配置新的agent · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
ReviewMar 23, 2026, 1:31 PM
- Hash
- 4be90d7467fcfdbe1b18980a54b4f9ad37f3f80fbb059700228348d2e5355176
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: quick-agent-setup Version: 1.0.0 The skill manages Feishu bot configurations by directly modifying the global OpenClaw configuration file (~/.openclaw/openclaw.json) and executing shell commands via execSync to restart the system gateway. While these actions are consistent with the stated purpose in SKILL.md and index.js, the ability to perform system-level configuration changes and service restarts represents a high-risk capability. The skill also handles sensitive credentials (App Secret) and lacks robust input validation before writing to the configuration file, though no clear evidence of intentional malice or data exfiltration was found.
- External report
- View on VirusTotal