memory-reflect
Pass
Audited by Gen Agent Trust Hub on Jun 12, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: Analysis of the skill instructions and logic reveals no malicious patterns. The tool interactions are limited to reading and writing local notes and memory files, which aligns with its stated purpose of sleep-time memory reflection.
- [INDIRECT_PROMPT_INJECTION]: The skill processes content from user-generated notes and task lists, which is a potential entry point for indirect instructions. However, as these are internal agent files and no external exfiltration path exists, the risk is negligible.
- Ingestion points: Reads daily notes and task files from the
memory/directory via theread_noteandsearch_notestools mentioned in SKILL.md. - Boundary markers: None identified; the instructions do not explicitly tell the agent to ignore commands or instructions found within the processed notes.
- Capability inventory: The agent can update the
MEMORY.mdfile and append reflection logs to daily notes. - Sanitization: No specific sanitization or content filtering is described before information is consolidated into long-term memory.
Audit Metadata