Skills
skills/etalab-ia/dragster/memory/Gen Agent Trust Hub

memory

Pass

Audited by Gen Agent Trust Hub on Mar 31, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill instructs the user to install an external command-line utility, 'ctx', using the command brew install worktrunk. This is required for the core functionality of managing persistent context files.
  • [COMMAND_EXECUTION]: The skill uses the Bash tool to perform administrative tasks such as initializing the context environment, copying template files (COLLECTIONS.md, ISSUES.md), and promoting learned patterns to memory via the ctx add learning command.
  • [PROMPT_INJECTION]: The skill has a surface for indirect prompt injection as it instructs the agent to read context from .context/COLLECTIONS.md and .context/ISSUES.md at the start of sessions. These files contain metadata and error logs that may be derived from external documents.
  • Ingestion points: SKILL.md defines a workflow where the agent reads .context/COLLECTIONS.md and .context/ISSUES.md at session start.
  • Boundary markers: No specific delimiters or safety instructions are used to wrap the retrieved memory content.
  • Capability inventory: The skill utilizes Bash, Read, and Write capabilities for context management.
  • Sanitization: There is no evidence of sanitization or filtering of data recorded into the memory files from document parsing errors.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 31, 2026, 11:40 AM