skill-system-memory

This fragment behaves like a telemetry/compaction hook that persists session metadata and optionally captures and stores a transcript tail. There is no clear indicator of active malware or backdoor behavior, but there is a meaningful security/privacy risk: transcript_path is derived from untrusted JSON and can drive reading of arbitrary local files, and the captured content is persistently written to local JSONL and stored in PostgreSQL after base64 decoding. In environments with untrusted or attacker-influenced inputs, this warrants review of input validation, path restrictions, and retention/redaction controls.