Back to skill
Skillv1.0.4
VirusTotal security
Aister vector-memory · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 30, 2026, 3:51 AM
- Hash
- 16beef5d7f526e1a3632bc9f276fbebdee506fc7ca17966e252fb48834acac2d
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: aister-vector-memory Version: 1.0.4 The skill is classified as suspicious due to several high-risk behaviors, despite being well-documented and seemingly for legitimate purposes. These include the modification of the user's `~/.bashrc` for autostarting the embedding service (persistence, `INSTALL.md`), the requirement for `sudo` and PostgreSQL superuser privileges during installation (`SKILL.md`, `INSTALL.md`), and the local file reading capabilities (`memory_reindex.py`) which, while targeting specific memory files, could be manipulated if the `VECTOR_MEMORY_DIR` environment variable were compromised. There is no clear evidence of intentional malicious behavior like data exfiltration to unauthorized endpoints or stealthy backdoors, but these capabilities present a higher attack surface.
- External report
- View on VirusTotal