Memory Archiver Pro

Security checks across malware telemetry and agentic risk

Overview

This is a coherent memory-archiving skill, but users should understand that it may manage and clean up local memory files.

Install only if you want an agent to organize and reuse local memory files. Review what is stored in the memory directory, avoid storing secrets there, and confirm retention or backup settings before relying on auto-clean behavior.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (2)

Vague Triggers

Medium

Confidence: 93% confidence
Finding: The usage examples include generic phrases like '帮我归档记忆' and especially '继续上次的工作', which can plausibly appear in normal conversation and may unintentionally trigger the skill. In a memory-management skill with archiving and cleanup behavior, accidental invocation could cause file operations or retention actions the user did not explicitly intend.

Missing User Warnings

Medium

Confidence: 96% confidence
Finding: The skill advertises periodic cleanup and configurable retention-based deletion but does not clearly warn users that files may be automatically removed after the retention window. For a memory archive system, silent cleanup increases the risk of unintended data loss and can undermine user expectations that archived memories are preserved.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal