Back to skill
Skillv0.0.1
VirusTotal security
Viking Memory System Ultra 2 · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
ReviewMar 28, 2026, 10:46 AM
- Hash
- 22f0aea50540bac176a9111e5d55af275df627a63d477e5ea906706151b81970
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: viking-memory-ultra2 Version: 0.0.1 The Viking Memory System Ultra bundle is classified as suspicious primarily due to the inclusion of hardcoded API keys for MiniMax and NVIDIA services within `llm_interface.sh`, `sv_archive_summary.sh`, and `sv_promote.sh`. These scripts are designed to transmit user-generated memory content to external endpoints (e.g., integrate.api.nvidia.com and api.minimaxi.com) for summarization and relevance analysis. While this functionality is consistent with the stated purpose of the skill, the use of developer-provided hardcoded credentials creates a significant privacy risk and a potential data exfiltration path. Additionally, `sv_write_v2.sh` contains a functional bug where a quoted heredoc ('EOF') prevents the expansion of metadata variables like $MEMORY_ID, resulting in malformed memory files.
- External report
- View on VirusTotal