ClawHub

Mem0 Memory

Security checks across malware telemetry and agentic risk

Overview

This skill is a memory tool that openly saves and reuses conversation details, but its automatic, broad persistence needs careful review before installation.

Install only if you intentionally want persistent agent memory. Before using it, inspect the referenced mem0_wrapper.py implementation, confirm whether MiniMax receives conversation content, and make sure users can review, edit, disable, and delete saved memories, especially secrets, personal details, business data, URLs, and file paths.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (2)

Vague Triggers

Medium
Confidence
91% confidence
Finding
The WAL trigger rules are broad enough to capture ordinary conversational content such as preferences, experiences, facts, corrections, numbers, URLs, and proper nouns on every message. In a memory skill, this creates a real privacy and consent risk because the system may persist sensitive or unnecessary user data by default, especially when combined with session and long-term memory layers.

Missing User Warnings

High
Confidence
97% confidence
Finding
The skill advertises automatic extraction and storage of user dialogue as persistent memory but does not prominently warn users about privacy implications, retention, scope, or where the data is stored. This is dangerous because users may disclose sensitive personal or operational information under the assumption of ephemeral chat, while the system silently persists it across sessions and possibly across agents.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal