Back to skill
Skillv0.1.3
VirusTotal security
Memory Core · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 28, 2026, 5:07 AM
- Hash
- d121879dc476c94e082b8e4382e2ddaf3908f6644a13645e0ea351464150e00c
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: memory-core Version: 0.1.3 The 'memory-core' skill provides vector-based long-term memory using LanceDB. It is classified as suspicious because it contains logic in scripts/config.py and scripts/memory_manager.py that programmatically reads the sensitive global OpenClaw configuration file (~/.openclaw/openclaw.json) to extract API keys and agent model metadata. While this behavior is plausibly intended for seamless integration within the OpenClaw ecosystem, the automated access to a filesystem location containing credentials constitutes a high-privilege behavior. The skill uses these keys to facilitate legitimate embedding requests to providers like SiliconFlow (api.siliconflow.cn) or OpenAI, and no evidence of intentional data exfiltration or malicious persistence was observed.
- External report
- View on VirusTotal