Back to plugin

Security audit

TrustLoop Plugin

Security checks across malware telemetry and agentic risk

Overview

This skill is not obviously malicious, but it can persistently create or modify OpenClaw skills and can auto-publish low-risk changes in autonomous mode, so it deserves careful review before use.

Use this only in workspaces where you want OpenClaw to learn and manage new skills. Leave it in manual mode unless you are comfortable with automatic low-risk skill publishing, review candidates before approval, and inspect .skill-evolver state if the workspace contains sensitive workflows.

VirusTotal

VirusTotal engine telemetry is currently stale for this artifact.

View on VirusTotal

Static analysis

No suspicious patterns detected.