Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
Supermemory
v1.2.0Store, recall, and semantically search conversation insights using a vector memory engine to enhance customer interactions and context.
⭐ 0· 97·0 current·0 all-time
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Suspicious
high confidencePurpose & Capability
SKILL.md describes a vector DB/embedding pipeline, Supermemory Cloud (API key required), and automatic capture of conversation insights. The included runtime (sm.mjs) does not call any external APIs, embedding providers, or vector DBs — it simply writes/reads JSON files under ~/.openclaw/memory/vectors and performs keyword matching. The documentation therefore overstates capabilities and mentions credentials (cloud API key, embedding_model) that are not declared or used in the code.
Instruction Scope
SKILL.md claims an 'Auto-Capture' feature that automatically extracts and stores customer preferences, price signals, competitive mentions, etc., but it provides no concrete source for those captures (chat logs, transcripts) and the included CLI does not implement auto-capture. This gives ambiguous authority to the agent to 'auto-capture' conversation data if the integration were extended — a potential privacy/data-exfiltration risk unless precisely scoped. The SKILL.md also references configuration templates ({{embedding_model}}) not declared elsewhere.
Install Mechanism
There is no installer or external downloads. The skill is instruction-only with one included code file (sm.mjs). Nothing in the package fetches remote archives or executes installer scripts, which keeps install risk low.
Credentials
Registry metadata declares no required env vars, but the code reads OPENCLAW_HOME and HOME (to determine MEMORY_DIR) and SKILL.md references an external Supermemory Cloud API key and embedding_model placeholders that are not declared. That mismatch (undocumented credential requirement) is suspicious. Also the skill persists potentially sensitive conversation data to the user's home directory by default.
Persistence & Privilege
The skill persists memories to disk under OPENCLAW_HOME or ~/.openclaw/memory/vectors. It does not request always:true and does not modify other skill configurations, but it will create and retain files in the user's home directory (potential PII). This is expected for a memory engine, but you should be aware of where data will be stored and how it is protected.
What to consider before installing
This skill's documentation and code disagree in important ways. SKILL.md promises embeddings, a cloud provider requiring an API key, and automatic capture of conversation signals, but the included sm.mjs is a local CLI that stores JSON files and does only keyword search. Before installing or enabling this skill: 1) Ask the author to explain how 'auto-capture' works and what sources it will read (chat logs, transcripts, other files). 2) Confirm whether a Supermemory Cloud API key or embedding model is required and ensure any credentials would be declared and limited to the required scope. 3) Note that the skill writes persistent files to ~/.openclaw/memory/vectors (or OPENCLAW_HOME) — do not allow it to store sensitive PII without encryption or retention controls. 4) The JavaScript has a probable bug (uses await import inside a non-async function) — request a corrected implementation. 5) If you still want to try it, run the skill in a sandbox or test account, review the code locally, and restrict OPENCLAW_HOME to a safe directory; do not enable any undocumented autonomous 'auto-capture' behavior until you have a precise, auditable implementation. If the author can provide an updated package where the code implements (or explicitly omits) the documented cloud/auto-capture behaviors and lists any required env vars, rerun this evaluation.Like a lobster shell, security has layers — review code before you run it.
latestvk97bzkrq0w39jpqvpc5rtddamd83kqm8
License
MIT-0
Free to use, modify, and redistribute. No attribution required.