Back to plugin

Security audit

ClawXMemory

Security checks across malware telemetry and agentic risk

Overview

This package is internally consistent with being a local memory plugin: it requires only local config, exposes a local read-only dashboard and diagnostic scripts that read the plugin's SQLite DB, and does not request unrelated credentials or installs.

This plugin appears to do what it says: local-first memory with an optional dashboard and diagnostic scripts that read the plugin's SQLite DB. Before installing, consider: 1) Enabling allowPromptInjection is required for this plugin to inject memory into prompts — only enable it if you trust the plugin and understand that it bypasses OpenClaw's prompt-injection block for the memory slot. 2) The dashboard listens on a local port (39393 by default); confirm uiHost is bound to localhost and the port is not exposed to untrusted networks. 3) Diagnostic scripts will read the SQLite DB (default ~/.openclaw/clawxmemory/memory.sqlite); ensure filesystem permissions meet your security requirements. 4) Verify the package source on the registry (package contents and the published tarball) before installing to ensure no unexpected code is introduced. If you want lower risk, disable the UI and avoid running the optional debug/repair scripts unless needed.

VirusTotal

No VirusTotal findings

View on VirusTotal

Static analysis

No suspicious patterns detected.