Skills
skills/contextware/skills/open-memory-local-manager/Gen Agent Trust Hub

open-memory-local-manager

Pass

Audited by Gen Agent Trust Hub on Apr 1, 2026

Risk Level: SAFE
Full Analysis
  • [COMMAND_EXECUTION]: The skill utilizes a bundled Node.js script, scripts/check-connection.cjs, to verify the connectivity and health of the MCP server. This script is used as intended for operational verification.
  • [DATA_EXFILTRATION]: The connectivity check script transmits an x-api-key header to the target server. This is a required functional component for authentication with the OpenMemory Local service.
  • [PROMPT_INJECTION]: The skill's primary function involves memory storage and retrieval, which represents an indirect prompt injection surface. 1. Ingestion points: openmemory_list and openmemory_query tools. 2. Boundary markers: Absent. 3. Capability inventory: Local script execution via Node.js. 4. Sanitization: Absent. The risk is minimized by the skill's specific focus on structured semantic search.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 1, 2026, 07:05 PM
Security Audit — agent-trust-hub — open-memory-local-manager