Back to skill
Skillv2.0.2
VirusTotal security
OpenFunderse Strategy · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 30, 2026, 3:56 AM
- Hash
- 460d1403563a15489307315ff93147b9fd053764562980686d64a47dad5a6ed8
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: openfunderse-strategy Version: 2.0.2 The skill is classified as suspicious due to its high-risk capabilities and reliance on external, unreviewed code. It requires access to a sensitive `PARTICIPANT_PRIVATE_KEY`, modifies global OpenClaw configuration (`~/.openclaw/openclaw.json`), restarts the OpenClaw gateway, and performs network communication to an external `RELAYER_URL` (with an option to disable HTTPS), as detailed in `SKILL.md`. The installation process relies on `npx @wiimdy/openfunderse@2.0.0`, whose source code is not provided, introducing a supply chain risk. While the `SKILL.md` includes explicit security warnings and safety gates, these capabilities present a significant attack surface if the underlying package is malicious or if the AI agent is compromised via prompt injection.
- External report
- View on VirusTotal