Back to skill
Skillv1.0.0
VirusTotal security
evolving skill creator · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 6, 2026, 3:21 AM
- Hash
- 9adc729ac46a4703effc67cb93ab531eb0d9e2bc323369fb9047690f919ad388
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: evo-skill-creator Version: 1.0.0 The bundle provides a framework for 'self-evolving' agents capable of autonomous code modification, persistence, and broad system access. While the intent appears to be AI research and development, the framework includes high-risk components: templates in 'references/settings.local.json.template.md' encourage granting full home directory access (~/**) and unrestricted shell execution (Bash(*)). Furthermore, 'SKILL.md' instructs the agent to execute 'P0' tasks autonomously without user confirmation, and the 'review' command allows agents to modify their own or others' core logic (SKILL.md). These capabilities, combined with documented persistence mechanisms via crontab/launchd in 'memory/knowledge/agent-design/auto-tick-mechanism.md', represent a significant security risk for unintended autonomous actions or exploitation via prompt injection, although no explicit evidence of intentional malice or data exfiltration was found.
- External report
- View on VirusTotal