ClawHub

Mem0 Memory Setup

Security checks across malware telemetry and agentic risk

Overview

This skill is a coherent setup guide for connecting Hermes to Mem0, but users should treat the API key and cloud memory behavior carefully.

Install only if you want Hermes to use Mem0 cloud memory. Review the commands before running them, keep the Mem0 API key out of logs and shared terminal output, restrict permissions on any env file containing it, and remember that enabled memory may store conversation-derived facts in Mem0.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (2)

Vague Triggers

Medium
Confidence
88% confidence
Finding
The trigger phrases are broad enough to activate this skill for generic requests like '配置记忆' or 'memory provider', which can cause the agent to surface installation and credential-handling steps in contexts where the user did not explicitly ask to set up Mem0. In this skill, that matters because the workflow includes account registration, reading a local API key, and modifying Hermes configuration, so over-triggering increases the chance of unintended configuration changes or exposure of sensitive setup guidance.

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The skill instructs extracting an API key from a local config file and appending it into another environment file, but it does not include strong safeguards about secret handling, file permissions, shell history, or avoiding accidental disclosure in logs and outputs. Because this skill is specifically about integrating a cloud memory provider into Hermes, the exposed credential could grant access to stored memory data or allow unauthorized use of the Mem0 account if mishandled.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal