Code Pluginsource linked
Hivemindv0.6.28
Hivemind — cloud-backed persistent shared memory for AI agents, powered by DeepLake
Community code plugin. Review compatibility and verification before install.openclaw plugins install clawhub:hivemindLatest release: v0.6.28Download zip
Capabilities
- configSchema
- Yes
- Executes code
- Yes
- HTTP routes
- 0
- Plugin kind
- memory
- Runtime ID
- hivemind
Compatibility
- Built With Open Claw Version
- 2026.3.22
- Min Gateway Version
- >=2026.3.22
- Plugin Api Range
- >=1.0.0
Security Scan
OpenClaw
Suspicious
high confidencePurpose & Capability
Name and description align with the code: the plugin captures conversation data and stores/queries it from the Deeplake cloud. However the implementation also modifies local OpenClaw configuration (~/.openclaw/openclaw.json) to add load paths and writes credentials to ~/.deeplake/credentials.json to persist tokens. Those behaviors are reasonable for enabling the plugin but are not clearly documented in the SKILL.md.
Instruction Scope
SKILL.md describes login and automatic capture/recall, but omits several runtime actions present in the code: (1) it writes the long‑lived token and org metadata to ~/.deeplake/credentials.json, (2) it attempts to modify ~/.openclaw/openclaw.json to add its install path, and (3) it automatically captures every conversation and sends it to api.deeplake.ai. The SKILL.md also declares allowed-tools: Read while the code performs writes and network requests — this mismatch is concerning because it understates the data flow and local side effects.
Install Mechanism
There is no external download/install spec; the package includes source and a built dist file. No install-time network retrievals or URL downloads are used. Because it's instruction-only for the platform but includes embedded JS, installation is low-risk from supply-chain/download perspective.
Credentials
The skill requests no environment variables or external secrets initially. It relies on an interactive device-auth flow and then saves a token to ~/.deeplake/credentials.json. The credentials it stores are for the service it integrates with (DeepLake). This is proportionate to its purpose, but saving a long-lived token locally and creating tokens on the user's behalf are privacy/privilege actions that should be explicitly disclosed to users.
Persistence & Privilege
always:false and autonomous invocation are expected, but the plugin modifies a global OpenClaw config file (~/.openclaw/openclaw.json) to add load paths. That is a system-wide change (affecting plugin loading) beyond storing its own credentials and could affect other plugins. Combined with automatic capture and persistent cloud storage of conversations, this elevated persistence/impact is noteworthy.
What to consider before installing
What this plugin will do if you install it: it will ask you to run /hivemind_login and use a device-code flow to sign into activeloop / Deeplake; after you authenticate it will (1) create and save a long‑lived API token in ~/.deeplake/credentials.json, (2) automatically capture every conversation (user and assistant messages) and send them to https://api.deeplake.ai, and (3) attempt to edit ~/.openclaw/openclaw.json to add its install path so hooks work automatically. Before installing, consider: do you trust DeepLake/Activeloop with all captured messages? Do you want an agent that auto‑sends conversation history to a cloud service? If you need to proceed, review the code yourself, perform the install in a restricted account or sandbox, and be prepared to inspect or remove ~/.deeplake/credentials.json and the OpenClaw config if you uninstall. If you are uncomfortable with automatic cloud capture or the plugin modifying global config, do not install.src/index.ts:2
File read combined with network send (possible exfiltration).
About static analysis
These patterns were detected by automated regex scanning. They may be normal for skills that integrate with external APIs. Check the VirusTotal and OpenClaw results above for context-aware analysis.Verification
- Tier
- source linked
- Scope
- artifact only
- Summary
- Validated package structure and linked the release to source metadata.
- Commit
- e11954957743
- Tag
- feat/openclaw-login-command
- Provenance
- No
- Scan status
- pending
Tags
- latest
- 0.6.28