sync-memory

SUSPICIOUS: the skill’s purpose matches its capabilities, and the named remote services appear legitimate, but the actual sync path depends on an unverifiable local helper (memory-manager.py) and unnamed MCP connectors that can access broad local context and send it off-host. This is not confirmed malware, but it carries high security risk due to opaque execution and external data transfer.