Scan Report
5 /100
swarmrecall-memory
Conversational memory persistence with semantic search and session tracking via the SwarmRecall API
Pure documentation skill providing AI agent memory persistence via declared external API. All external data transmission is clearly documented with privacy policy, HTTPS encryption, and tenant isolation stated.
Safe to install
This is a low-risk documentation skill. Verify the swarmrecall-api.onrender.com service reputation independently before production use.
| Resource | Declared | Inferred | Status | Evidence |
|---|---|---|---|---|
| Filesystem | NONE | NONE | — | No file operations in documentation |
| Network | READ | READ | ✓ Aligned | SKILL.md documents read-only API calls (GET endpoints) |
| Shell | NONE | NONE | — | No shell commands documented |
| Environment | READ | READ | ✓ Aligned | SKILL.md lines 8,24: Requires SWARMRECALL_API_KEY env var |
3 findings
Medium External URL 外部 URL
https://www.swarmrecall.ai SKILL.md:14 Medium External URL 外部 URL
https://swarmrecall-api.onrender.com/api/v1/register SKILL.md:29 Medium External URL 外部 URL
https://swarmrecall-api.onrender.com SKILL.md:46 File Tree
1 files · 5.7 KB · 152 lines Markdown 1f · 152L
└─
SKILL.md
Markdown
Security Positives
✓ Clear documentation of all external API endpoints and behavior
✓ Privacy policy explicitly states data handling practices (HTTPS, tenant isolation, PostgreSQL storage)
✓ No credential exfiltration - explicitly states NOT to write API key to disk
✓ Self-registration flow is declared with user consent instructions
✓ No executable code - purely a specification document for AI agent behavior
✓ Category tagging (fact, preference, decision, context, session_summary) provides transparency into data types stored