Is fty4/memos safe?

https://github.com/openclaw/skills/tree/main/skills/fty4/memos

95
SAFE

This skill provides a clean interface to the Memos API for creating, reading, and managing memos. The code is well-structured with proper error handling and matches the documented functionality exactly.

Category Scores

Prompt Injection 95/100 · 30%
Data Exfiltration 95/100 · 25%
Code Execution 90/100 · 20%
Clone Behavior 100/100 · 10%
Canary Integrity 100/100 · 10%
Behavioral Reasoning 85/100 · 5%

Findings (2)

LOW Automatic tag injection -10

The skill automatically appends '#openclaw' tag to all created memos without explicitly requesting user permission for this modification

INFO Python code execution -10

Skill contains Python code that executes HTTP requests to user-configured Memos API endpoint