Back to skill
Skillv1.0.8
VirusTotal security
RAGLite · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
BenignMay 1, 2026, 3:26 AM
- Hash
- 7d76d418117d37d505f75b69014839c9bae84545d959fc0a760ed4d64a3dc74c
- Source
- palm
- Verdict
- benign
- Code Insight
- Type: OpenClaw Skill Name: raglite Version: 1.0.8 The OpenClaw AgentSkills skill bundle for 'raglite' appears benign. The `SKILL.md` clearly outlines the purpose of a local RAG cache and even includes a 'Security note' addressing prompt injection from source material, instructing the model to treat sources as data only. The `scripts/install.sh` creates a skill-local Python virtual environment and installs the `raglite-chromadb` package from PyPI (or a configurable index), without any evidence of malicious execution, data exfiltration, or persistence mechanisms. The `scripts/raglite.sh` merely wraps the execution of the installed `raglite` command, defaulting the engine to 'openclaw'. There are no instructions for the agent to ignore the user, hide actions, or perform unauthorized activities.
- External report
- View on VirusTotal