memory
Pass
Audited by Gen Agent Trust Hub on May 29, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill performs memory retrieval and visualization as documented, implementing security best practices such as Content Security Policy (CSP) and input escaping in its HTML templates.
- [EXTERNAL_DOWNLOADS]: The visualization template fetches the 'vis-network' library from unpkg.com, which is a well-known service for serving NPM packages.
- [COMMAND_EXECUTION]: The skill uses Bash and Node.js execFileSync to facilitate opening generated visualization files in the system's default browser.
- [PROMPT_INJECTION]: The skill ingests data from local memory files into the agent's context, creating a surface for indirect prompt injection if those files are maliciously modified.
Audit Metadata