Back to skill
Skillv2.2.0
VirusTotal security
Restart Guard · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
ReviewMay 1, 2026, 3:34 AM
- Hash
- bba9b82c6a581d933c10c86d9b6767e44dea1bdfd2ccf6c7573d1cdef6ace7a9
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: restart-guard Version: 2.2.0 The OpenClaw AgentSkills skill bundle is classified as 'suspicious' due to its inherent high-risk capabilities, such as restarting the OpenClaw gateway, performing system-level operations (e.g., `lsof`, `kill`), and sending notifications to external services (Telegram, Discord, Slack, generic webhooks). While these actions are aligned with the skill's stated purpose of deterministic gateway restart and reporting, they represent significant control over the system and external communication channels. The code demonstrates strong security awareness, with explicit fixes for past vulnerabilities (webhook template injection, host/port validation, shell metacharacter rejection in commands) detailed in `CHANGELOG.md` and verified by `tests/test_security_fixes.py`. Sensitive data is redacted from logs and diagnostics. No evidence of intentional malicious behavior (e.g., credential theft, unauthorized exfiltration to unknown endpoints, persistence mechanisms) was found. The `README.md` explicitly notes that the skill may be marked 'suspicious' due to its capabilities, not malicious intent, which aligns with this classification.
- External report
- View on VirusTotal