中文 EN

Scan Report

Scan New Files

Low Risk — Risk Score 15/100
Last scan:23 hr ago Rescan
15 /100
yaoyao-memory
四层渐进式长时记忆系统,让 AI 跨会话保持上下文、沉淀知识、持续进化
Legitimate memory management skill with straightforward file operations and declared IMA sync capability. Minor documentation issues but no malicious behavior.
Skill Nameyaoyao-memory
Duration44.2s
Enginepi
Safe to install
Safe to use. Consider clarifying the IMA credential requirements and the rm command in documentation for better user understanding.

Findings 3 items

Severity Finding Location
Low
IMA credential access not formally declared Doc Mismatch
The skill accesses IMA credentials from environment variables and ~/.config/ima/ files but this is only explained in usage text, not formally declared as a capability.
client_id = os.environ.get('IMA_OPENAPI_CLIENTID')
→ Add environment:READ to declared capabilities if this access is considered a resource usage.
 scripts/sync_ima.py:13
Low
Dangerous rm commands in documentation Doc Mismatch
SKILL.md line 887 shows 'rm -rf ~' style commands in the uninstall section. This is for user guidance but uses dangerous patterns.
rm -rf ~/.openclaw/workspace/MEMORY.md
→ Use safer deletion patterns or clarify these are user commands, not skill execution.
 SKILL.md:887
Info
IMA credentials stored in plain text files Sensitive Access
The documentation instructs users to store API credentials in plain text files at ~/.config/ima/. While this is a common pattern, it could be improved with a warning about file permissions.
echo 'your_client_id' > ~/.config/ima/client_id
→ Add note about setting file permissions (chmod 600) for credential files.
 SKILL.md:45
ResourceDeclaredInferredStatusEvidence
Filesystem WRITE WRITE ✓ Aligned All scripts use pathlib for file operations
Network NONE READ ✓ Aligned sync_ima.py:52 makes HTTP POST to ima.qq.com
Environment NONE READ ✓ Aligned sync_ima.py:13-19 reads IMA_OPENAPI_* env vars
Shell NONE NONE No subprocess or shell commands in code
1 Critical 3 findings
💀
Critical Dangerous Command 危险 Shell 命令
rm -rf ~
SKILL.md:887
🔗
Medium External URL 外部 URL
https://ima.qq.com/agent-interface
SKILL.md:31
🔗
Medium External URL 外部 URL
https://ima.qq.com/
scripts/sync_ima.py:40

File Tree

10 files · 78.4 KB · 2711 lines
Python 7f · 1517L Markdown 3f · 1194L
├─ 📁 references
│ ├─ 📝 heartbeat-maintenance.md Markdown 125L · 2.7 KB
│ └─ 📝 memory-lifecycle.md Markdown 113L · 2.4 KB
├─ 📁 scripts
│ ├─ 🐍 cleanup.py Python 142L · 4.5 KB
│ ├─ 🐍 generate_index.py Python 196L · 5.9 KB
│ ├─ 🐍 init_memory.py Python 379L · 11.0 KB
│ ├─ 🐍 migrate.py Python 129L · 4.1 KB
│ ├─ 🐍 promote.py Python 224L · 6.9 KB
│ ├─ 🐍 summarize.py Python 219L · 6.6 KB
│ └─ 🐍 sync_ima.py Python 228L · 7.6 KB
└─ 📝 SKILL.md Markdown 956L · 26.6 KB

Security Positives

✓ No subprocess or shell command execution in code
✓ No base64 encoding, obfuscation, or anti-analysis techniques
✓ No credential exfiltration - IMA keys stay local for API authentication only
✓ Clean Python standard library usage (pathlib, json, urllib)
✓ All file operations are within documented workspace scope
✓ No network calls to unknown/undeclared external IPs
✓ Supports --dry-run for safe preview of destructive operations
✓ No hidden functionality - all scripts are straightforward file/text processing