Security audit

Markdown Memory

Security checks across malware telemetry and agentic risk

Overview

This skill provides a disclosed local memory system, but users should treat saved memories as persistent private data.

Install this only if you want the assistant to keep local memory across sessions. Do not store passwords, tokens, financial details, or other secrets in memory files; periodically review or delete MEMORY.md, USER.md, daily memory files, and any SQLite memory database; inspect any referenced Python helper scripts before running them.

SkillSpector

By NVIDIA

Vulnerability Patterns

Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 91% confidence
Finding: The skill explicitly instructs storing user information, preferences, and conversation content in persistent local files, but it does not require clear user consent, retention limits, or data minimization before saving. Even though storage is local, this can still expose sensitive personal data to other local users, backups, logs, or future unintended disclosure through later prompts and memory retrieval.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.