Back to plugin

Security audit

Cortex

Security checks across malware telemetry and agentic risk

Overview

Cortex is a disclosed local memory plugin that runs a Python bridge and startup hooks to persist conversation context; no provided artifact shows exfiltration, deception, or destructive behavior.

Install Cortex only if you want persistent local agent memory across sessions. Treat the memory database as sensitive, avoid saving secrets unless you have a retention plan, review the Python package/dependencies for your environment, and make sure users can inspect or delete stored memories.

VirusTotal

VirusTotal engine telemetry is currently stale for this artifact.

View on VirusTotal

Static analysis

Detected: suspicious.dangerous_exec

Shell command execution detected (child_process).

Critical
Code
suspicious.dangerous_exec
Location
dist/index.js:17
Evidence
const proc = spawn("python3", [BRIDGE_SCRIPT], {

Shell command execution detected (child_process).

Critical
Code
suspicious.dangerous_exec
Location
hooks/yantrik-memory-startup/handler.js:14
Evidence
const result = spawnSync('python3', ['-c', `

Shell command execution detected (child_process).

Critical
Code
suspicious.dangerous_exec
Location
src/index.ts:39
Evidence
const proc = spawn("python3", [BRIDGE_SCRIPT], {