Security audit

Research Memory

Security checks across malware telemetry and agentic risk

Overview

This is a disclosed BlueColumn memory skill for saving and searching user-selected research, with normal cautions around API keys and remote persistent storage.

Install only if you trust BlueColumn and want selected research stored remotely. Keep the bc_live API key private, verify the BlueColumn/Supabase endpoint from your dashboard, and avoid saving confidential or regulated material unless you understand BlueColumn's retention and deletion controls.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (2)

Vague Triggers

Medium

Confidence: 89% confidence
Finding: The trigger phrases are broad and overlap with common user language such as 'save this article' or 'what do I know about', which can cause the skill to activate in situations the user did not explicitly intend. Because this skill sends content and queries to an external memory service, unintended invocation can result in accidental transmission or storage of sensitive documents, notes, or research queries.

Missing User Warnings

Medium

Confidence: 95% confidence
Finding: The skill instructs users to store articles, documents, notes, and queries in BlueColumn but does not prominently warn that this data is transmitted to and stored by an external third-party service. Users may reasonably assume the action is local or ephemeral, increasing the chance that confidential research, internal documents, or sensitive queries are shared without informed consent.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal