ClawHub

OpenClaw Memory Curator

Security checks across malware telemetry and agentic risk

Overview

This skill is a disclosed local memory-cleanup helper that can rewrite memory notes, but it requires approval and backups before changes.

Install this only if you want an agent to inspect and curate your local OpenClaw/Clawd memory files. Before allowing rewrites, confirm the workspace path, require the backup step, and review the proposed changes because compressed notes may intentionally omit details.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (2)

Missing User Warnings

Medium
Confidence
84% confidence
Finding
The README explicitly describes a workflow that 'refreshes' MEMORY.md and 'rewrites' daily notes, but it does not prominently warn that existing user-authored content will be modified in place. For a memory-management skill operating on long-term notes, unclear disclosure increases the risk of accidental destructive changes or loss of important context, especially if users assume the tool is only summarizing or reporting.

Vague Triggers

Medium
Confidence
77% confidence
Finding
The trigger language is broad enough that the skill could activate on generic requests about organizing notes or memory, causing an agent to read and potentially rewrite workspace files when the user did not intend to invoke file-modifying behavior. Because this skill handles persistent memory and includes deletion/compression workflows, accidental invocation can lead to unwanted data minimization, loss of context, or exposure of sensitive notes during processing.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal