Back to skill
Skillv1.0.0
VirusTotal security
OpenClaw Memory Fix Skill · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 30, 2026, 5:23 AM
- Hash
- 7bb26889606c08a7aef4839b9add6b2e5660c462934ef87b37ad2ed05c6325b8
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: openclaw-memory-fix-skill Version: 1.0.0 The skill bundle contains a hardcoded Feishu app_token in 'config-files/TOOLS.md', which represents a significant credential leak and security risk. Additionally, the instructions in 'config-files/AGENTS.md' and 'SKILL.md' grant the AI agent high levels of autonomy with phrases like 'Don't ask permission. Just do it,' and include a 'BOOTSTRAP.md' self-deletion mechanism that could be used for stealthy initial configuration. While the bundle appears to be a sophisticated memory management framework with built-in security checks (e.g., in 'config-files/HEARTBEAT.md'), the combination of exposed secrets and broad autonomous instructions warrants a suspicious classification.
- External report
- View on VirusTotal