Session Persistence
Medium
- Category
- Rogue Agent
- Content
└── FEATURE_REQUESTS.md ``` ### Create Learning Files ```bash mkdir -p ~/.openclaw/workspace/.learnings
- Confidence
- 84% confidence
- Finding
- Create Learning Files ```bash mkdir -p ~/.openclaw
Self Improving Agent 3.0.6
Security checks across malware telemetry and agentic risk
Overview
This skill persistently records local agent learnings, which is disclosed and aligned with its self-improvement purpose, but users should avoid storing sensitive information in those notes.
Install only if you want an agent to keep local cross-session learning notes. Review entries before promoting them into global context files, and do not store secrets, tokens, credentials, personal data, raw transcripts, or sensitive command output in the learning files.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Rogue AgentSelf-Modification, Session Persistence
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (1)
VirusTotal
66/66 vendors flagged this skill as clean.