Memos
Security checks across malware telemetry and agentic risk
Overview
This skill is a straightforward Memos note-management helper that discloses its token-based MCP setup and destructive delete behavior.
Install only if you trust the external openclaw-memos-mcp package and the Memos server you connect to. Use a least-privileged token if available, keep the default private visibility unless you explicitly want public notes, and review any delete request carefully because deletion is irreversible.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
66/66 vendors flagged this skill as clean.