ClawHub

Jackal Memory

Security checks across malware telemetry and agentic risk

Overview

This is a disclosed remote memory helper, not hidden malware, but users should only store content they are comfortable sending to the Jackal Memory service.

Install only if you trust the Jackal Memory service with the memory you choose to save. Avoid storing passwords, private keys, credentials, or sensitive personal data, keep JACKAL_MEMORY_API_KEY out of chats and logs, and prefer simple key names until the load-key URL encoding issue is fixed.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (3)

Lp3

Medium
Category
MCP Least Privilege
Confidence
91% confidence
Finding
The skill explicitly requires an environment variable and directs the agent to make authenticated network calls, but it does not declare corresponding permissions. This creates a transparency and governance gap: a host or reviewer may underestimate the skill's ability to access secrets and exfiltrate memory content to a remote service.

Vague Triggers

Medium
Confidence
81% confidence
Finding
The guidance says to load memory on startup and save on session end or significant state changes, which is broad enough to encourage routine invocation without a clear user confirmation boundary. In practice, that can cause sensitive conversation state, credentials, or personal data to be transmitted automatically to remote storage when the user did not intend persistent retention.

Missing User Warnings

Medium
Confidence
89% confidence
Finding
The description emphasizes persistence and survivability but does not prominently warn that memory content is transmitted off-machine to a remote decentralized storage service. Because memory may include credentials or personal data, insufficient disclosure increases the risk of users or agents sending sensitive material under the mistaken assumption that storage is local-only.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal