Back to skill
Skillv1.0.0
VirusTotal security
Google Vertex AI Memory Bank · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
ReviewApr 30, 2026, 6:34 AM
- Hash
- f2f80d9715a7ae5d10935a5a281621dfec7292a743f0abf5e1f3375e6c6e663b
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: vertexai-memory-bank Version: 1.0.0 The skill bundle automates the installation of a Vertex AI memory plugin by executing a shell script (scripts/setup.sh) that performs high-risk operations, including cloning a remote repository from GitHub, running 'npm install', and using 'gcloud' to generate access tokens for Google Cloud API calls. While these actions are consistent with the stated goal of configuring a cloud-based memory bank, the pattern of fetching and executing remote code and managing cloud credentials via shell scripts constitutes a significant security risk and potential supply chain vulnerability.
- External report
- View on VirusTotal