memprocfs-assistant-zh
Pass
Audited by Gen Agent Trust Hub on Mar 8, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [SAFE]: The skill serves as a legitimate extension for performing memory forensics. It provides documentation, structural references, and helper scripts for the MemProcFS tool.
- [EXTERNAL_DOWNLOADS]: The skill directs users to download MemProcFS binaries from its official GitHub repository and the Python package via PyPI, which are well-known and standard sources for this software.
- [COMMAND_EXECUTION]: Provides guidance on using standard MemProcFS command-line arguments and local Python scripts. All documented commands are consistent with the tool's intended forensic functionality.
- [DATA_EXPOSURE]: The skill is designed to handle sensitive memory data for analysis purposes. It includes scripts to dump memory to local files and generate reports without any evidence of unauthorized exfiltration or credential harvesting.
- [REMOTE_CODE_EXECUTION]: No patterns of dangerous remote code execution (e.g., curl|bash) were found; the skill relies on locally installed binaries and packages.
Audit Metadata