Back to skill
Skillv0.1.0
VirusTotal security
Ops Framework · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
ReviewMay 1, 2026, 3:28 AM
- Hash
- 73c9d8ddbdbaf611ca974203ac4b9b8191e452d86a6f0c145c933effa6258f55
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: ops-framework Version: 0.1.0 The skill provides a framework for running arbitrary shell commands via user-defined jobs, which is a high-risk capability. However, the code (`ops-monitor.py`) and agent instructions (`SKILL.md`, `OPS_FRAMEWORK.md`) implement significant security guardrails: write jobs are blocked by default and require explicit approval and a read-only verification step, and the agent is instructed to enforce these controls and seek user confirmation for risky actions. There is no clear evidence of intentional malicious behavior, data exfiltration to unauthorized endpoints, or persistence mechanisms installed by the skill itself. The prompt injection instructions are designed to enhance security and transparency, not bypass them. The inherent risk of executing arbitrary commands, even with strong controls, makes it suspicious rather than benign.
- External report
- View on VirusTotal