a-mem-memory-organization

Security checks across malware telemetry and agentic risk

Overview

This is an instruction-only memory organization skill that discloses its durable-note behavior and does not include executables, credential use, network calls, or hidden actions.

Install this only if you want an agent to help maintain durable memory. Review what gets saved, avoid storing secrets or sensitive personal data, and periodically prune memory files so outdated or private context does not keep influencing future sessions.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Vague Triggers

Medium

Confidence: 95% confidence
Finding: The activation guidance includes generic phrases like "remember," "keep context," and "organize knowledge," which are common in everyday conversation and not tightly scoped to this specific skill. The file does not provide exclusion conditions or negative examples to clarify when these phrases should not activate the skill.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal