ClawHub

OpenClaw Memory

Security checks across malware telemetry and agentic risk

Overview

This is a coherent OpenClaw memory helper, but it can read and append sensitive shared local memory automatically and has weak write containment for daily memory notes.

Install only if you intentionally want agents to search and update shared OpenClaw memory on this machine. Treat memory contents as sensitive, ask the agent to show results before relying on them, require dry-run output and explicit approval before any append, avoid storing secrets, and prefer a fixed version that validates daily note dates and narrows implicit invocation.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (2)

Missing User Warnings

Medium
Confidence
97% confidence
Finding
The skill tells the agent to append durable rules, preferences, and daily progress into shared OpenClaw memory files without any explicit warning that this modifies persistent local state. Persistent writes can poison future agent behavior, store sensitive operational details, or create hard-to-notice long-lived changes affecting later sessions.

Vague Triggers

Medium
Confidence
93% confidence
Finding
The skill enables implicit invocation without any documented trigger constraints, so an agent may call it automatically in situations broader than intended. Because this skill accesses and updates shared local memory containing servers, paths, internal services, and user preferences, unintended activation can expose sensitive local context or cause unauthorized persistence of data into shared memory.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal