Security audit
XMemo for OpenClaw
Security checks across malware telemetry and agentic risk
Overview
This is a disclosed XMemo cloud-memory provider that reads, writes, caches, and manages agent memories as expected for its purpose.
Install only if you want OpenClaw to use XMemo as a cloud memory backend. Use a scoped XMemo API key, prefer environment-backed secrets on shared machines, review the default cross-agent recall behavior, and enable auto-capture only if you are comfortable with selected user messages being saved to XMemo.
VirusTotal
60/60 vendors flagged this plugin as clean.
Static analysis
No suspicious patterns detected.
