mnemonics
Pass
Audited by Gen Agent Trust Hub on Mar 9, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection through its memory retrieval mechanism. Ingestion points: Data is ingested from markdown files in the .mnemonics/ directory when recalling context. Boundary markers: There are no delimiters or instructions to distinguish recalled memory content from system instructions. Capability inventory: The skill uses subagent tools like memory_recall and memory_remember for file system access. Sanitization: No explicit sanitization or validation of the stored memory content is performed.
Audit Metadata