Back to skill
Skillv0.1.4
VirusTotal security
ragflow-runbook · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
BenignMay 1, 2026, 5:08 AM
- Hash
- 11da251c9aeec14db91c93a472f16165ac81c31a98dc6b4fb8fa6d243f90e99c
- Source
- palm
- Verdict
- benign
- Code Insight
- Type: OpenClaw Skill Name: ragflow-runbook Version: 0.1.4 The skill bundle is designed for RAGFlow runtime operations, including deployment, health checks, and alerting. All scripts and documentation align with this stated purpose. Notably, `scripts/deploy.sh` includes explicit opt-in mechanisms (`RAGFLOW_RUNBOOK_ALLOW_DOWNLOAD`, `RAGFLOW_RUNBOOK_ALLOW_START`) to prevent unauthorized downloading of upstream files or starting containers, which is a strong security safeguard. The `SKILL.md` and other documentation provide clear instructions and security warnings (e.g., regarding API key handling and default passwords), without any evidence of prompt injection attempts to manipulate the agent maliciously. Python scripts (`ragflow_ping.py`, `ragflow_smoke.py`, `ragflow_status.py`) perform standard API calls for health monitoring, and `ragflow_alert.py` uses the `openclaw message send` CLI for intended operational alerts, explicitly warning against including secrets. There is no evidence of data exfiltration, unauthorized persistence, or malicious execution.
- External report
- View on VirusTotal