Install OpenViking Memory
PassAudited by VirusTotal on May 5, 2026.
Overview
Type: OpenClaw Skill Name: install-openviking-memory Version: 2.0.0 The skill bundle automates the installation and configuration of the OpenViking memory plugin using shell commands and a remote setup helper via `npx` (SKILL.md). It is classified as suspicious due to the high-risk practice of passing sensitive API keys as command-line arguments, which exposes them to local process monitoring, and the use of `npx` to execute remote code from a third-party package. While these actions are aligned with the stated purpose of installation, they represent significant security vulnerabilities and supply chain risks.
Findings (0)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
The agent may run commands that install or configure the memory plugin and restart OpenClaw components.
The skill authorizes the agent to execute local shell commands for setup. This is expected for an installer, but it means the user is delegating local configuration changes to the agent.
You will collect a few values through natural conversation, then run **all** commands yourself using your shell tool.
Proceed only if you intended to install this plugin; ask the agent to show commands before running them if you want more control.
Anyone with the supplied API key may be able to access or modify memory data depending on OpenViking server permissions.
The skill collects an OpenViking API key for authentication. This is purpose-aligned, but the key is still a sensitive credential.
**API Key** — for auth. Say "none" if the server has no auth.
Use the least-privileged API key available, avoid sharing root/admin keys unless required, and rotate the key if it may have been exposed.
Information from chats may persist beyond the current conversation and be reused in future sessions.
The plugin creates persistent cross-session memory from conversations and injects recalled context into future replies. This is the stated purpose, but it can store sensitive facts and influence later behavior.
Once installed, the plugin automatically captures important facts from chats and recalls relevant context before each reply (auto-capture + auto-recall, cross-session).
Install only if you want long-term memory enabled; review OpenViking retention/deletion controls and avoid sharing secrets or sensitive data you do not want remembered.
The actual plugin installer may come from outside the reviewed artifact set.
The skill references an external installation path, but the reviewed package is instruction-only and does not include installer code for inspection.
plugin install (with clawhub-fallback to ov-install)
Verify the OpenViking installer source and version against official documentation before allowing installation.