Shell command execution detected (child_process).
- Code
- suspicious.dangerous_exec
- Location
- index.ts:153
- Evidence
serverProcess = spawn(
Security audit
Security checks across malware telemetry and agentic risk
This appears to be a real memory plugin, but it auto-runs an external Python memory server, uses persistent prompt injection, and handles credentials in ways that need review before installation.
Install only if you are comfortable running and auditing the separate Python memory server. Before enabling it, pin the repository version, inspect the server code and dependencies, use scoped LLM credentials, consider disabling autoStart and contextInjection, and verify how memories, generated skills, scheduled jobs, and any webhook/tool-call bindings are controlled.
VirusTotal engine telemetry is currently stale for this artifact.
Detected: suspicious.dangerous_exec, suspicious.env_credential_access
serverProcess = spawn(
env: { ...process.env, PYTHONUNBUFFERED: "1" },