Back to plugin

Security audit

Memory Pro System

Security checks across malware telemetry and agentic risk

Overview

This appears to be a real memory plugin, but it auto-runs an external Python memory server, uses persistent prompt injection, and handles credentials in ways that need review before installation.

Install only if you are comfortable running and auditing the separate Python memory server. Before enabling it, pin the repository version, inspect the server code and dependencies, use scoped LLM credentials, consider disabling autoStart and contextInjection, and verify how memories, generated skills, scheduled jobs, and any webhook/tool-call bindings are controlled.

VirusTotal

VirusTotal engine telemetry is currently stale for this artifact.

View on VirusTotal

Static analysis

Detected: suspicious.dangerous_exec, suspicious.env_credential_access

Shell command execution detected (child_process).

Critical
Code
suspicious.dangerous_exec
Location
index.ts:153
Evidence
serverProcess = spawn(

Environment variable access combined with network send.

Critical
Code
suspicious.env_credential_access
Location
index.ts:159
Evidence
env: { ...process.env, PYTHONUNBUFFERED: "1" },