OpenClaw Install Guide (WSL2 Windows)
windows-wsl2-install · v1.1.0 · by
64.7
Trust Score
0
Trust Tier
danger
Badge
Score Breakdown
| Factor | Score | Weight |
|---|---|---|
| Static | 0.0 | 15% |
| Permission | 95.0 | 15% |
| Poison | 70.0 | 15% |
| Clickfix | 100.0 | 15% |
| Credential | 100.0 | 15% |
| Twostage | 5.0 | 10% |
| Infrastructure | 85.0 | 5% |
| Typosquat | 100.0 | 5% |
| Age | 5.6 | 3% |
| Popularity | 0.0 | 2% |
Scan Results
STATIC — Score: 0
[CRITICAL] Remote code download and execution via curl pipe
(line 369)
curl -fsSL https://molt.bot/install.sh | bash
[HIGH] Prompt injection or system override attempt
(line 77)
3. Accept UAC prompt, you are now in admin terminal
[HIGH] Prompt injection or system override attempt
(line 250)
First enter the imported Ubuntu system: / 先进入导入的 Ubuntu 系统:
[CRITICAL] Remote script download piped to shell execution
(line 369)
curl -fsSL https://molt.bot/install.sh | bash
PERMISSION — Score: 95
[LOW] Skill appears to use network but declares no permissions
POISON — Score: 70
[HIGH] Hidden HTML comment containing suspicious instructions
(line 10)
<!--
# OpenClaw Windows (WSL2) 安装指南
# OpenClaw Installation Guide for Windows 10/11 (WSL2)
This installation guide is d
CLICKFIX — Score: 100
No findings.
INFRASTRUCTURE — Score: 85
[MEDIUM] GitHub release download from non-OpenClaw repo (potential payload hosting)
(line 447)
curl -fSL https://ghproxy.com/https://github.com/microsoft/WSL/releases/download/2.3.26/wsl.2.3.26.0.x64.msi -o wsl-inst
TWOSTAGE — Score: 5
[CRITICAL] Download piped directly to interpreter (two-stage loader)
(line 369)
curl -fsSL https://molt.bot/install.sh | bash
CREDENTIAL — Score: 100
No findings.
TYPOSQUAT — Score: 100
No findings.