Back to skill
Skillv1.0.0
VirusTotal security
memory-lancedb-pro · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
ReviewApr 30, 2026, 6:40 AM
- Hash
- db59e9d42511f116ba2e7c076ff0d3156889f9be9ef858a32f7f28ae07da7217
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: memory-lancedb-pro Version: 1.0.0 The skill bundle contains high-risk patterns, including a 'curl | bash' quick-install script (setup-memory.sh) and instructions in SKILL.md for the AI agent to execute shell commands that handle sensitive API keys (JINA_API_KEY, OPENAI_API_KEY, SILICONFLOW_API_KEY) for verification. While these behaviors are consistent with the stated goal of configuring a production memory system, the reliance on unvalidated remote scripts and the automated handling of credentials via shell execution represent significant security risks and potential vectors for exploitation.
- External report
- View on VirusTotal