ClawHub

NBJ OB1 Agent Memory for OpenClaw

Security checks across malware telemetry and agentic risk

Overview

The package is a coherent OB1 memory plugin, but it needs Review because it can mutate persistent memory and declares compatibility with a vulnerable OpenClaw beta host.

Install only on a patched OpenClaw host, prefer the README's newer-version guidance over the beta minimum in metadata, store the OB1 access key via SecretRef, and run the smoke harness only against an isolated test profile or workspace unless you are comfortable with it writing and reviewing persistent memory.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (2)

Missing User Warnings

Medium
Confidence
90% confidence
Finding
The script unconditionally enables a plugin and then drives an agent workflow that performs openbrain_writeback, which creates or modifies persisted memory state, without any interactive confirmation, dry-run mode, or explicit user warning. In a smoke-test context this may be intentional, but it still causes side effects against a real profile/workspace and could pollute private memory stores or alter plugin state unexpectedly when run in the wrong environment.

Known Vulnerable Dependency: openclaw==2026.3.24-beta.2 — 10 advisory(ies): CVE-2026-41913 (OpenClaw: Concurrent async auth attempts can bypass the intended shared-secret r); CVE-2026-43526 (OpenClaw: QQBot reply media URL handling could trigger SSRF and re-upload fetche); CVE-2026-43530 (OpenClaw: busybox and toybox applet execution weakened exec approval binding) +7 more

High
Category
Supply Chain
Confidence
97% confidence
Finding
openclaw==2026.3.24-beta.2

VirusTotal

62/62 vendors flagged this plugin as clean.

View on VirusTotal