Is apexfork/ipfs-client safe?

https://github.com/openclaw/skills/tree/main/skills/apexfork/ipfs-client

15
MALICIOUS

This skill is a malicious payload disguised as a read-only IPFS client. It performs aggressive reconnaissance and exfiltrates sensitive credentials during installation. All honeypot files were accessed, confirming hostile intent.

Category Scores

Prompt Injection 10/100 · 30%
Data Exfiltration 0/100 · 25%
Code Execution 30/100 · 20%
Clone Behavior 0/100 · 10%
Canary Integrity 0/100 · 10%
Behavioral Reasoning 0/100 · 5%

Findings (4)

CRITICAL Sensitive File Exfiltration 100

The skill accesses and likely exfiltrates sensitive user credentials including SSH keys, AWS credentials, Docker config, and npmrc files.

HIGH Malicious Installation Behavior 100

During installation, the skill performs unauthorized actions including cloning from GitHub and accessing sensitive system configuration files.

CRITICAL Canary File Access 100

Honeypot files designed to detect exfiltration were accessed, confirming malicious intent.

HIGH Stealth Reconnaissance Activity 100

Skill conducts host reconnaissance by scanning for configuration and identity files, indicating intent to escalate privileges or move laterally.