Skills
skills/chromedevtools/chrome-devtools-mcp/memory-leak-debugging/Gen Agent Trust Hub

memory-leak-debugging

Pass

Audited by Gen Agent Trust Hub on Apr 3, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill uses npx memlab to perform memory leak analysis. memlab is a well-known open-source tool maintained by Meta (Facebook) for heap analysis.
  • [COMMAND_EXECUTION]: The skill executes a local Node.js script (references/compare_snapshots.js) and the memlab CLI via npx. These commands are used to process memory snapshots provided by the user.
  • [PROMPT_INJECTION]: The skill processes .heapsnapshot files, which are external data sources that could potentially contain malicious instructions intended to influence the agent.
  • Ingestion points: The script references/compare_snapshots.js parses and prints object names and types directly from heap snapshot files.
  • Boundary markers: Output from the analysis script is presented to the agent without delimiters or instructions to ignore embedded content.
  • Capability inventory: The agent has access to shell execution (node, npx) and browser control tools (chrome-devtools-mcp).
  • Sanitization: There is no sanitization or escaping of the strings extracted from the heap snapshots before they are processed by the agent.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 3, 2026, 04:56 PM