Nm Memory Palace Memory Palace Architect

Security checks across malware telemetry and agentic risk

Overview

This is a documentation-only memory-palace planning skill with no bundled executable code or hidden data access found.

Install this only as a memory-palace design aid. Do not grant wallet or sensitive-credential access for this skill, and review any external Claude Code plugin or local palace_manager.py script before running it.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Vague Triggers

Medium

Confidence: 89% confidence
Finding: The trigger list includes generic terms like "memory," "organization," "knowledge," and "architecture," which are common across many unrelated conversations. This can cause the skill to activate outside its intended mnemonic-design context, increasing the chance of unintended invocation, context pollution, or inappropriate tool/workflow suggestions.

VirusTotal

63/63 vendors flagged this skill as clean.

View on VirusTotal