ClawHub

Cxz9909 Agent Memory

Security checks across malware telemetry and agentic risk

Overview

This appears to be a coherent memory skill, but users should understand that it can persist personal facts from conversations on disk.

Install only if you want an agent to remember information across sessions. Avoid storing secrets, regulated data, or highly sensitive personal details unless you have consent and a deletion process; review where the database is stored and periodically purge stale or unnecessary memories.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (3)

Missing User Warnings

Medium
Confidence
92% confidence
Finding
The README explicitly promotes persistent storage of user preferences, relationship context, and personal attributes across sessions, but it does not warn about privacy risks, consent requirements, retention limits, or safe handling of potentially sensitive personal data. In an agent-memory skill, this omission is security-relevant because users may deploy it to store identifiable or behavioral data indefinitely, increasing the risk of privacy violations, over-collection, and unintended disclosure.

Missing User Warnings

Medium
Confidence
94% confidence
Finding
The skill explicitly instructs the agent to extract facts from conversations and store them in persistent memory, but it provides no warning, consent check, or data-handling guidance. This creates a real privacy and security risk because conversation-derived data may include sensitive personal, confidential, or regulated information that is retained across sessions without user awareness.

Missing User Warnings

Medium
Confidence
90% confidence
Finding
This module creates a persistent SQLite database under the user's home directory and is explicitly designed to store cross-session facts, lessons, and entities, which can include personal or sensitive user data. There is no built-in notice, consent flow, or even an API-level disclosure mechanism to warn downstream users that information is being retained on disk, increasing privacy and compliance risk when integrated into agent workflows.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal