Memory Guard

Security checks across malware telemetry and agentic risk

Overview

Memory Guard is a local integrity-checking skill whose file writes are visible and purpose-related, but users should use its trust-updating and stamping commands carefully.

Install only if you want local workspace memory-integrity tracking. Run verify freely, but use accept only after reviewing changes because it updates the trusted baseline, and use stamp only on intended memory files because it rewrites the chosen file in place.

SkillSpector

By NVIDIA

Vulnerability Patterns

Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 87% confidence
Finding: The `stamp` command writes to an arbitrary user-supplied path with no confirmation, backup, or path restrictions, and replaces the file contents via a temporary file and `mv`. In an agent or automation context, a mistaken or manipulated filename could corrupt important project files, inject content into sensitive text/config files, or break downstream tooling that consumes those files.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal