ClawHub

QuickRecall - Zero-Dependency Memory Engine. 常用记忆优先出现。零依赖 AI 记忆引擎,纯 Node.js。/ Prioritizes frequently used memories. Zero deps.

Security checks across malware telemetry and agentic risk

Overview

This is a local memory tool that writes user-added memories to a JSON file; it has expected privacy and data-loss risks but no evidence of hidden access, network exfiltration, or deceptive behavior.

Install only if you want a local plaintext memory store. Do not save API keys, passwords, private customer data, or other sensitive records in it; keep backups if the memories matter, and run cleanup, clear, or compact only when you are comfortable changing or losing stored entries.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Memory PoisoningPersistent Context Injection, Context Window Stuffing, Memory Manipulation
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (5)

Missing User Warnings

Medium
Confidence
89% confidence
Finding
The skill documentation advertises persistence and compaction features, but it does not clearly warn users that data is stored locally and may later be pruned or merged automatically. In an agent-memory context, this can cause unintended retention of sensitive information or silent loss/transformation of important records, leading to privacy, integrity, and operational risks.

Missing User Warnings

Medium
Confidence
90% confidence
Finding
The API explicitly provides persistent local storage and destructive operations but does not document any retention limits, user consent, backup expectations, or safety warnings around stored sensitive data. In an agent memory system, this omission is meaningful because operators may unknowingly persist secrets, personal data, or regulated information to disk and lose data through deletion or compaction without clear notice.

Ssd 3

Medium
Confidence
84% confidence
Finding
This engine stores arbitrary content and metadata to a plaintext local JSON file without encryption, redaction, access controls, or any data classification boundaries. In an agent context, that can capture secrets, personal data, tokens, or sensitive prompts and make them recoverable later by any process or user with filesystem access.

Ssd 3

Medium
Confidence
86% confidence
Finding
The compaction logic generates summary text by directly embedding snippets of original stored content into a new memory record. This can propagate and re-expose sensitive data that might otherwise have been aged out or harder to discover, increasing the chance of accidental disclosure through later retrieval or inspection of the backing file.

Memory Manipulation

High
Category
Memory Poisoning
Content
Get a single memory by ID. Increments hit_count.

#### `delete(id) -> boolean`
Delete memory by ID. Returns true if existed.

#### `compact(groupSize=5, minImportance=0.5) -> Array`
Compact low-importance memories into summaries.
Confidence
88% confidence
Finding
Delete memory

VirusTotal

57/57 vendors flagged this skill as clean.

View on VirusTotal