Clawmem

yoloshii/ClawMemMIT21🔧 6 tools

F2.0SpiderScore (registry)
Use cases:kb-memoryvector-search
⚠ Hard constraint applied: critical vulnerability
Decision
Not Recommended
Confidence
90%

Clawmem is not recommended — low score (2.0/10) with 2 critical issues.

Recommended Actions

  • high
    Run In Container
    2 critical vulnerabilities require isolation
  • high
    Limit Permissions
    Restrict tool access to minimum required scope

Do Not

  • running in production without container isolation
  • using for security-sensitive tasks
Risk Flags (5)
  • critical
    child_process_injection
    Command injection — execSync() with template literal interpolation
  • critical
    tool_description_poison
    Tool description contains hidden directives that may manipulate LLM behavior
  • high
    ts_token_leakage×3
    Secret or token may be leaked through error messages, logs, or return values
  • high
    prompt_injection
    Tool output contains LLM instruction injection patterns
  • medium
    ts_input_reflection×3
    User input reflected directly in tool output -- may enable prompt injection via reflection
How This Was Decided
  • negativew=0.5Overall quality score = 2.0/10 (grade F)
  • negativew=0.82 critical security issue(s) detected
  • negativew=0.53 high-severity issue(s) detected
  • negativew=0.3Tool description clarity score = 2.8/10
Source: SpiderRating automated security scanUpdated: 2026-03-22Protocol: v1.1

Description Quality

Composite: 2.8 / 10

3-Layer Breakdown

Description (38%)
2.8
Security (34%)
5.6
Metadata (28%)
5.1

Description Dimensions

Intent Clarity
5.3
Permission Scope
0.0
Side Effects
2.0
Capability Disclosure
4.0
Operational Boundaries
3.6

Security Analysis

5.6
Score
2
Critical
3
High
3
Medium
0
Low

Findings Redacted

Detailed security findings are hidden during the 90-day responsible disclosure window. Maintainers have been notified.

2 CRITICAL4 HIGH3 MEDIUM

Metadata Health

Provenance (40%)
7.0
Maintenance (35%)
4.0
Popularity (25%)
3.6

Badge

Add this badge to your README:

[![SpiderRating](https://spiderrating.com/badge/yoloshii__ClawMem.svg)](https://spiderrating.com/servers/yoloshii/ClawMem)
🛡️

Protect Your Agents

Get a free API key. Every MCP tool call checked against 15,923 rated servers in real-time.

Get Free API Key →
📊

Monitor All Your Servers

Dashboard for your entire MCP portfolio. Score tracking, alerts, and compliance reports.

Start Free Trial →

Scan Locally (Open Source)

Run SpiderShield on your own machine. 46+ security rules, zero data leaves your system.

Star on GitHub →

Similar Servers

Attention Matterssrobinson/attention-matters
2.0F
Megamemory0xK3vin/MegaMemory
2.0F
Codebase Memory McpDeusData/codebase-memory-mcp
2.0F
Cuba MemorysLeandroPG19/cuba-memorys
2.0F
Eioneiondb/eion
1.9F