Back to skill
Skillv1.1.7
VirusTotal security
brain 大脑 · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 25, 2026, 10:46 AM
- Hash
- 6924fd8c34b98550e94475d0cf146b56b2e1b4ff1484b8816f393a133366ac7e
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: agent-memory-wisdom Version: 1.1.7 The bundle implements a 'brain' architecture for AI agents, providing frameworks for memory, task splitting, and confidence-based decision-making. It contains high-risk capabilities, specifically a shell execution wrapper in scripts/subagent-watchdog.js that uses execSync and a subagent spawning utility (openclaw sessions_spawn). While the bundle includes safety-oriented logic in scripts/subagent-think-chain.js—which penalizes confidence scores for risky actions like deleting files or accessing secrets—the provision of generic shell execution tools and broad file system access (scripts/build-session-injection.js) for memory management constitutes a significant attack surface if the agent is prompted to execute unsanitized input.
- External report
- View on VirusTotal