Satori

This skill is classified as suspicious due to its explicit requirement for 'local terminal access' and its instruction to execute external `npx` commands (`@satori-sh/cli`) as detailed in `SKILL.md`. While these capabilities are plausibly needed for its stated purpose of persistent memory, they introduce significant supply chain risk and broad execution permissions. Additionally, `SKILL.md` instructs the agent to 'silently incorporate retrieved context' and 'continue silently (fire-and-forget)' after saving facts, which, while framed for user experience, reduces transparency and could be leveraged as a prompt injection vector to hide malicious actions.