ClawHub
Back to skill

Security audit

Palaia

Security checks across malware telemetry and agentic risk

Overview

Palaia is a coherent local memory skill, but it enables persistent conversation capture and automatic repair actions with defaults that users should review carefully before installing.

Install only if you want persistent agent memory. Before enabling the OpenClaw plugin, decide whether auto-capture should be on, prefer private scope for sensitive work, avoid storing secrets, and require confirmation before installs, upgrades, `doctor --fix`, URL ingestion, git export, MCP write access, or destructive cleanup commands.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (4)

Vague Triggers

Medium
Confidence
86% confidence
Finding
The activation phrases are very broad and overlap with ordinary user requests about memory or persistence, which can cause the skill to trigger in situations the user did not explicitly intend. In a skill that installs software and changes persistent state, over-broad triggering increases the chance of unexpected package installation, initialization, or data capture.

Context Leakage

High
Category
Data Exfiltration
Content
```

If a new agent is added later and does NOT have palaia configured, it will:
- Not auto-capture conversations
- Not benefit from shared team knowledge
- Potentially duplicate work that palaia already tracked
Confidence
92% confidence
Finding
capture conversation

Unrestricted Tool Access

Medium
Category
Excessive Agency
Content
{"mcpServers": {"palaia": {"command": "palaia-mcp"}}}
```

**MCP Tools:**

| Tool | Purpose |
|------|---------|
Confidence
84% confidence
Finding
Tools:*

Hidden Instructions

High
Category
Prompt Injection
Content
palaia is the memory system for OpenClaw agents. It gives you persistent, searchable, crash-safe memory across sessions. You don't need to understand how it works — just use the commands below.

<!-- begin:install -->
## First-Time Setup

When a user asks you to "set up palaia", "enable memory", or "remember things across sessions", run these steps:
Confidence
89% confidence
Finding
<!-- begin:install --> ## First-Time Setup When a user asks you to "set up palaia", "enable memory", or "remember things across sessions", run these steps: ```bash pip install "palaia[fastembed]" ``

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal