Back to skill
Skillv1.0.0
VirusTotal security
openclaw-computer · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
ReviewMar 29, 2026, 7:11 AM
- Hash
- aedb50b50cf97966e5a766efc3f173d1a150a621e8894ef4f6fa27e5b8e6b0b0
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: openclaw-computer-use-v2-0-0-tar Version: 1.0.0 The skill bundle provides extensive system control capabilities, including GUI automation, file management, and screen recording, which are inherently high-risk. While these align with the stated purpose, there is a significant discrepancy between the security claims in SKILL.md (e.g., sandbox mode and forbidden paths like ~/.ssh) and the actual implementation in computer_use.py and computer-use.sh, which lack these safeguards. Furthermore, computer-use.sh contains a potential shell injection vulnerability in the application launch logic ($name &). No evidence of intentional malice or data exfiltration was found.
- External report
- View on VirusTotal