memory-management

SUSPICIOUS. The skill’s stated purpose aligns with its local memory-management actions, and there is no clear malicious behavior or direct exfiltration in the skill text. Risk comes from dependence on a separately installed third-party CLI with incomplete in-skill provenance, plus optional credential forwarding through that CLI if custom model endpoints are configured. Overall this is coherent but not fully self-contained or fully verifiable from the skill alone.