Back to skill
Skillv2.0.0
VirusTotal security
OpenClaw 沙盒测试系统 · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 30, 2026, 5:30 AM
- Hash
- 60d25fb772241871b6042c4277eaa5ccb6d7e92b44e315a344fd3c75292bdbc7
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: openclaw-sandbox Version: 2.0.0 The skill bundle provides a sandbox for OpenClaw configuration testing but contains high-risk environment manipulation and poor portability. Specifically, `scripts/cleanup-env.sh` hardcodes a specific developer's path (`/Users/wh1ko`) and attempts to force the `$HOME` variable to it, which would disrupt the shell environment for any other user. While the scripts in `templates/` include backup and validation logic, the aggressive modification of core environment variables and the execution of background processes via `nohup` in `templates/safe-try.sh` represent risky behaviors that could lead to system instability if used outside the original developer's specific environment.
- External report
- View on VirusTotal