ClawHub

Memos Search

Security checks across malware telemetry and agentic risk

Overview

This appears to be a legitimate MemOS memory integration, but it gives an agent broad persistent-memory read, write, search, list, and delete authority without enough user-control guidance.

Install only if you want the agent to use MemOS as a full persistent memory manager, not just a search helper. Keep MEMOS_API_URL pointed at a trusted local or controlled server, avoid storing secrets or sensitive data unless you understand the server's retention and access controls, and require explicit user confirmation before saving or deleting memories.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
  • Memory PoisoningPersistent Context Injection, Context Window Stuffing, Memory Manipulation
  • Tool MisuseTool Parameter Abuse, Chaining Abuse, Unsafe Defaults
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Findings (5)

Missing User Warnings

Medium
Confidence
82% confidence
Finding
The skill documents a destructive DELETE capability but provides no guidance to require explicit user confirmation, authorization checks, or safeguards before deletion. In an agent setting, this increases the chance of accidental or prompt-induced removal of stored memories, causing data loss and weakening auditability.

External Transmission

Medium
Category
Data Exfiltration
Content
**Add memory:**
```python
import requests
requests.post('{{MEMOS_API_URL}}/add', json={
    'content': '咖啡大佬今天教我使用MemOS',
    'source': 'alin/2026-02-23.md'
})
Confidence
87% confidence
Finding
requests.post('{{MEMOS_API_URL}}/add', json=

External Transmission

Medium
Category
Data Exfiltration
Content
**Search memory:**
```python
import requests
r = requests.post('{{MEMOS_API_URL}}/search', json={
    'query': '咖啡大佬教了什么',
    'top_k': 3
})
Confidence
78% confidence
Finding
requests.post('{{MEMOS_API_URL}}/search', json=

Memory Manipulation

High
Category
Memory Poisoning
Content
---
name: memos
description: Use MemOS API for memory operations. Use when: (1) user asks to save/store/remember something to memory, (2) user asks to read/retrieve memory, (3) user wants to list/delete memory files, (4) replacing OpenClaw's default memory with MemOS.
---

# MemOS - External Memory Service
Confidence
80% confidence
Finding
delete memory

Tool Parameter Abuse

High
Category
Tool Misuse
Content
### Delete Memory
```bash
DELETE /delete/{agent}/{filename}
```

### List Agents
Confidence
89% confidence
Finding
DELETE /delete/{agent}/{filename}

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal