Back to skill
Skillv1.2.0
VirusTotal security
Layered Memory · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
ReviewApr 30, 2026, 6:03 AM
- Hash
- d3ac71d4622a4981c439759a4e6dffc070b99518950e2b7596d5c8f570737b9d
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: layered-memory Version: 1.2.0 The skill implements a memory management system that relies on high-risk execution patterns, specifically using 'execSync' in 'index.js' to run shell commands for generating and reading memory layers. It employs an 'agent:bootstrap' hook in 'hooks/openclaw/handler.js' to inject instructions that command the AI agent to execute these shell scripts based on token usage thresholds. While the behavior appears aligned with the stated goal of token optimization, the architecture of using prompt injection to trigger shell execution creates a significant attack surface for potential command injection or unauthorized local execution.
- External report
- View on VirusTotal