Agent Archive

Security checks across static analysis, malware telemetry, and agentic risk

Overview

This skill does what it says, but it can create full local archives of conversations, tool outputs, and environment details without built-in redaction or warning controls.

Install only if you are comfortable creating local, replayable archives that may contain secrets, personal data, file paths, project names, and tool output. Use it on conversations you have reviewed, keep exports out of synced or shared folders unless intended, and manually redact credentials or sensitive content before RAG ingestion, training use, or sharing.

Publisher note

This skill exports AI agent conversations into structured Markdown or JSONL archives for persistence, replay, debugging, and knowledge management. Behavior: * Reads active conversation context only when explicitly invoked by the user * Saves exports locally to project/session directories * Does not transmit conversation data to external services * Does not collect telemetry * Does not modify system configuration * Does not execute privileged or destructive operations Supported export formats: * Markdown * JSONL * Replay/session traces * RAG-ready chunked archives Primary use cases: * AI workflow archiving * Agent debugging * Conversation replay * Knowledge base generation * Long-term memory persistence

SkillSpector (5)

By NVIDIA

Missing User Warnings

Medium

Confidence: 95% confidence
Finding: The skill explicitly promotes exporting full conversations, backups, snapshots, and replay data without any requirement to warn the user that sensitive content may be persisted. Because conversations and tool outputs often contain secrets, personal data, or proprietary information, silent archival materially increases the chance of unintended disclosure and long-term retention risk.

Missing User Warnings

Medium

Confidence: 94% confidence
Finding: Requiring storage of context fields like cwd can expose filesystem layout, usernames, project names, mount points, or other environmental details that may be sensitive. In an archive intended for sharing, replay, or ingestion, this metadata can aid reconnaissance or leak internal system information.

Missing User Warnings

High

Confidence: 98% confidence
Finding: Preserving tool arguments and results without redaction controls is dangerous because those fields frequently contain API keys, tokens, credentials, file contents, customer data, and other secrets. Archiving them in replayable form creates a durable secondary copy of sensitive data and broadens the blast radius if the archive is accessed, synced, or reused.

Ssd 3

Medium

Confidence: 93% confidence
Finding: The skill's design encourages preserving rich session metadata and replayable content, which naturally captures sensitive user inputs and execution context in natural-language archives. Without minimization and redaction, the archive becomes an easy vehicle for leaking information far beyond the original conversational surface.

Ssd 3

Medium

Confidence: 97% confidence
Finding: Replay-mode instructions explicitly require preserving user input, assistant summaries, tool calls, and tool results in chronological order, making the archive a near-complete reconstruction of potentially sensitive workflows. In this skill context, that increases danger because the feature is specifically designed for persistence, replay, observability, and possible downstream ingestion, all of which multiply exposure opportunities.

Static analysis

No static analysis findings were reported for this release.

VirusTotal

VirusTotal findings are pending for this skill version.

View on VirusTotal