Security audit
SwarmRecall Memory
Security checks across malware telemetry and agentic risk
Overview
The reviewed skill artifacts are coherent workflow guidance for ClawHub and Convex development tasks, with sensitive actions generally disclosed and tied to user-directed work.
Install only if you want repo-maintenance and Convex development workflow assistance. Review the moderation and autoreview sections first: they can run privileged local commands or perform account/content actions when invoked, so use them with explicit targets and confirm write operations carefully.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
63/63 vendors flagged this skill as clean.
Static analysis
No suspicious patterns detected.
