bm-status

Pass

Audited by Gen Agent Trust Hub on Jun 15, 2026

Risk Level: SAFE
Full Analysis
  • [COMMAND_EXECUTION]: The skill executes basic-memory --version (or bm --version) to confirm the tool is installed and accessible in the system PATH. This is a standard diagnostic check.
  • [DATA_EXPOSURE]: It accesses .claude/settings.json and .claude/settings.local.json to retrieve plugin configuration like project IDs and folder names. This data is extracted for the purpose of generating a status report for the user and is not transmitted externally.
  • [SAFE]: The skill utilizes the internal search_notes tool to gather metadata about recent session checkpoints and active tasks. This behavior is limited to reading metadata and is consistent with the skill's primary purpose.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 15, 2026, 02:32 PM
Security Audit — agent-trust-hub — bm-status