mem0-remember
Pass
Audited by Gen Agent Trust Hub on Jun 18, 2026
Risk Level: SAFEPROMPT_INJECTIONDATA_EXFILTRATION
Full Analysis
- [SAFE]: The skill utilizes vendor-specific tools
add_memoryandget_event_statusto perform its primary function of memory management. This is consistent with the skill's stated purpose and authored context. - [PROMPT_INJECTION]: The skill presents a surface for indirect prompt injection as it processes user-provided text for storage.
- Ingestion points: User input captured via the
/mem0-remembercommand in SKILL.md. - Boundary markers: Absent; the text is passed directly to the storage tool.
- Capability inventory:
add_memory,get_event_status. - Sanitization: None specified, though the content is stored verbatim (
infer=False) and not executed, mitigating potential risks. - [DATA_EXFILTRATION]: The skill transmits user text and project metadata to the mem0 service.
- Evidence: Calls
add_memorywith user input and project identifiers. - Context: This is the core intended functionality of the skill and is directed to the vendor's own infrastructure.
Audit Metadata