ClawHub
Back to skill

Security audit

Huo15 Openclaw Memory Curator

Security checks across malware telemetry and agentic risk

Overview

This is a simple instruction-only memory cleanup skill that does what it says, though users should run it interactively because it can delete memories and update MEMORY.md.

Install only if you want an agent to help maintain stored memories. Run it manually at first, review the proposed deletions and MEMORY.md changes before applying them, and back up important memory data because deleted entries may be hard to reconstruct.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (3)

Vague Triggers

Medium
Confidence
89% confidence
Finding
The trigger phrases are generic enough that the skill could be invoked when a user is only discussing memory cleanup rather than explicitly authorizing destructive maintenance actions. Because this skill can delete memory entries and update MEMORY.md, over-broad activation increases the chance of unintended state changes from ambiguous prompts.

Missing User Warnings

Medium
Confidence
95% confidence
Finding
This section instructs the agent to delete memory entries without clearly warning the user that the skill performs destructive modifications. In a memory-management context, silent deletion is especially risky because removed entries may be hard to reconstruct, and the user may not realize maintenance includes irreversible actions.

Missing User Warnings

Low
Confidence
91% confidence
Finding
The skill says to sync important memory summaries into MEMORY.md, but it does not clearly disclose that this writes to a file in the workspace. Undisclosed file modification can surprise users, overwrite curated content, or create unintended persistence of sensitive information.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal