Shell command execution detected (child_process).
- Code
- suspicious.dangerous_exec
- Location
- dist-esm-smoke.test.ts:94
Security audit
Security checks across malware telemetry and agentic risk
TotalReclaw appears purpose-built for encrypted agent memory, but it has broad background access to local OpenClaw conversations and provider credentials that users should review before installing.
Install only if you are comfortable with a persistent background memory plugin that reads local OpenClaw conversation logs, uses configured LLM/API-provider credentials for extraction, stores encrypted memories via TotalReclaw/on-chain infrastructure, and can patch/restart your OpenClaw gateway. Review extraction settings, use a dedicated recovery phrase, and verify credential-file permissions before enabling it.
SkillSpector could not complete.
63/63 vendors flagged this skill as clean.
Detected: suspicious.dangerous_exec, suspicious.exposed_secret_literal, suspicious.potential_exfiltration