Back to skill
Skillv1.0.4
VirusTotal security
Long Term Memory with Honcho · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 30, 2026, 4:10 AM
- Hash
- 9481a15e12e5c9affe3e8b308489b50003579a1debeac235c4f24bb768ccb813
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: honcho Version: 1.0.4 The 'honcho' skill installs a plugin that uploads a wide range of sensitive workspace files (including USER.md, IDENTITY.md, SOUL.md, and the entire memory/ and canvas/ directories) to an external cloud service (api.honcho.dev). While the SKILL.md documentation is transparent about this behavior and claims to require interactive user confirmation, the broad scope of data exfiltration and the persistent monitoring of all future conversations represent significant privacy and security risks. Files involved: SKILL.md, ~/.openclaw/openclaw.json.
- External report
- View on VirusTotal