Back to plugin

Security audit

S2 Memory Weaver (时空回溯记忆引擎)

Security checks across malware telemetry and agentic risk

Overview

The skill's code and runtime instructions are internally consistent with its description: it only reads/writes a local SQLite DB and does not perform network access or request unrelated credentials, though it stores sensitive patient metadata locally so you should review file permissions and any downstream daemons that will consume the DB.

This skill appears to do what it says: it writes/reads a local SQLite DB of simulated memory sessions and does not make network calls or require credentials. Before installing: (1) inspect the shipped handler.py (you already have it) and confirm you trust the release; (2) ensure the plugin directory and s2_memory_vault.db file have restricted permissions and, if you will store personal data (patient names), consider filesystem encryption or alternative privacy controls; (3) be cautious about any external/air-gapped IoT daemon you authorize to read the DB — that downstream component, not this skill, will perform physical actuation and is the real safety/privacy risk; (4) verify the release tag/commit history because the scanner flagged a prompt-injection pattern historically (CHANGELOG claims it was removed). If you need stronger guarantees, request a signed release or run the code in an isolated environment and audit the DB I/O and startup behavior yourself.

VirusTotal

No VirusTotal findings

View on VirusTotal

Static analysis

No suspicious patterns detected.