Memory Deduplication

Security checks across malware telemetry and agentic risk

Overview

This skill is local and aligned with memory cleanup, but it rewrites persistent agent memory with weaker safeguards than it claims.

Install only if you are comfortable with a tool rewriting MEMORY.md. Run the dry-run command first, keep your own backup outside the generated memory backup path, review the proposed changes manually, and avoid enabling the weekly cron job unless automatic memory edits are acceptable.

SkillSpector

By NVIDIA

Vulnerability Patterns

MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (2)

Intent-Code Divergence

Medium

Confidence: 88% confidence
Finding: The code treats title similarity greater than 0.8 as an 'exact duplicate' and deletes one section without verifying content equality. In a memory-management tool, this can silently remove distinct entries that merely have similar headings, causing integrity loss and accidental destruction of user data.

Missing User Warnings

Medium

Confidence: 94% confidence
Finding: The script overwrites MEMORY.md in place as soon as it runs, with no confirmation prompt or safety gate beyond optional dry-run behavior. Because this is a tool intended to modify long-term memory content, a bad similarity decision or accidental invocation can immediately and permanently alter important state.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal