Back to skill
Skillv0.1.0
VirusTotal security
lelogin skill (乐登录凭据管理技能) · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
ReviewMay 1, 2026, 1:36 PM
- Hash
- 58c4ea84f70d19ed97c9b73b1cced521e8350466b951ae89b9994f07a23892ea
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: lelogin Version: 0.1.0 The lelogin skill bundle provides instructions in SKILL.md for the agent to install and manage a third-party CLI tool using the high-risk 'curl | bash' pattern from an external domain (nationauth.cn). While the tool's stated purpose is to manage and inject secrets into various services like MySQL, SSH, and Alibaba Cloud, the automated execution of remote installation scripts and the centralized handling of sensitive credentials represent significant security risks. Although no explicit malicious intent or data exfiltration logic was found, the reliance on unverified remote payloads for core functionality warrants a suspicious classification.
- External report
- View on VirusTotal