Back to skill
Skillv2.0.1
VirusTotal security
Openclaw Memories · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 30, 2026, 4:33 AM
- Hash
- 3b40c2da5beb2e97a25b716f7f4a1036e04a722efd3c6614c3be5f852ed0c547
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: openclaw-memory-2 Version: 2.0.1 The skill is classified as suspicious due to its file system access capabilities in `src/indexer.ts` (`readFileSync`, `readdirSync`). While intended for indexing 'workspace Markdown files', if the `workspace` parameter is not properly sanitized or constrained by the OpenClaw agent runtime, a malicious prompt could instruct the agent to index and potentially read arbitrary files outside the intended scope (e.g., `/etc`, `~`). Additionally, `src/observer.ts` makes network calls to external LLM APIs (OpenAI, Anthropic, Gemini) and reads API keys from environment variables, which is a high-risk capability, though it is explicitly stated and necessary for the skill's core function and targets legitimate endpoints. There is no evidence of intentional data exfiltration to unauthorized parties, backdoors, or prompt injection attempts within the `SKILL.md` itself.
- External report
- View on VirusTotal