Shell command execution detected (child_process).
Critical
- Code
- suspicious.dangerous_exec
- Location
- dist/index.js:17
- Evidence
const proc = spawn("python3", [BRIDGE_SCRIPT], {
Security audit
Security checks across malware telemetry and agentic risk
Cortex is a disclosed local memory plugin that runs a Python bridge and startup hooks to persist conversation context; no provided artifact shows exfiltration, deception, or destructive behavior.
Install Cortex only if you want persistent local agent memory across sessions. Treat the memory database as sensitive, avoid saving secrets unless you have a retention plan, review the Python package/dependencies for your environment, and make sure users can inspect or delete stored memories.
VirusTotal engine telemetry is currently stale for this artifact.
Detected: suspicious.dangerous_exec
const proc = spawn("python3", [BRIDGE_SCRIPT], {const result = spawnSync('python3', ['-c', `const proc = spawn("python3", [BRIDGE_SCRIPT], {