Nm Memory Palace Memory Palace Architect
PassAudited by ClawScan on May 10, 2026.
Overview
This is mostly an instructional memory-palace design skill, with no code or automatic execution shown, but users should verify the referenced external plugin/scripts and ignore any unexpected credential requests.
This skill appears benign as a documentation-style memory-palace design aid. Treat the Python commands and the separate Claude Code plugin as outside this reviewed package: inspect them before running or installing. Also, this skill should not need wallet access or sensitive credentials based on the supplied instructions, so decline any unexpected credential requests.
Findings (3)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
If you install the external plugin, you may be granting behavior that was not reviewed in this package.
The reviewed package is instruction-only, but it points users to an external plugin that may contain agents, hooks, commands, or code not present in the supplied artifacts.
For the full experience with agents, hooks, and commands, install the Claude Code plugin.
Review the external plugin source and install it only from the trusted repository if you need the full command/hook functionality.
Running a local script that is not included in this reviewed package could execute code from your environment or from an external plugin.
The skill documents local Python script execution, but the referenced scripts are not included in the reviewed file manifest. The commands appear user-directed and purpose-aligned, not automatic.
python scripts/palace_manager.py create "My Palace" "programming" --metaphor workshop
Before running the documented Python commands, confirm the script path, source, and contents.
A credential or wallet prompt would be unexpected for the documented memory-palace design workflow.
The supplied capability signals imply sensitive credential or wallet access, but the registry metadata declares no primary credential or environment variables, and the reviewed skill content does not describe credential or wallet use.
requires-wallet; requires-sensitive-credentials
Do not provide wallet access or sensitive credentials for this skill unless a separately reviewed component clearly explains why they are needed.