Back to skill
Skillv1.0.5
VirusTotal security
OpenClaw Bot Dashboard · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 30, 2026, 5:12 AM
- Hash
- 01f0b92deef4ce0334feac9b02377895cc9658797f3b2ac229ca15e6ced0e13f
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: openclaw-bot-dashboard Version: 1.0.5 The skill automates the download and execution of a remote web dashboard from GitHub (xmanrui/OpenClaw-bot-review), including running 'npm install' and 'npm run dev' in the background. It performs high-risk operations such as killing processes on port 3000 and retrieving the system's LAN IP address. While these actions are aligned with the stated purpose in SKILL.md, the combination of remote code execution, background persistence, and broad shell command usage across multiple operating systems constitutes a significant security risk.
- External report
- View on VirusTotal