Back to skill
Skillv1.0.1
VirusTotal security
Structured Memory · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 30, 2026, 5:41 AM
- Hash
- 5e1e92b6ef4f19d0ad6036a73692fe1a62b49c415dcf15f310fdf6deecaedbce
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: structured-memory Version: 1.0.1 The structured-memory bundle implements an automated system for indexing and extracting technical metadata from an agent's daily logs. The script `scripts/extract_critical_facts.py` aggressively scrapes sensitive information including IP addresses, file paths, account names, and UUIDs using regex. While this is aligned with the stated purpose of technical memory maintenance, the `SKILL.md` file contains prompt-injection-style instructions that direct the AI agent to automatically execute these scripts as a 'default operating rule' whenever meaningful updates occur. The use of `subprocess.run` across multiple scripts to orchestrate these tasks, combined with the autonomous execution instructions and the collection of sensitive technical identifiers, presents a high-risk profile despite the lack of clear evidence of data exfiltration or malicious intent.
- External report
- View on VirusTotal