Scan Report
0 /100
memory-vault
Privacy-first persistent memory for AI agents with 3 privacy tiers (Open/Local/Locked), hierarchical recall, and keyword + semantic search
Memory Vault is a documentation-only skill with no executable code. It describes a legitimate privacy-focused persistent memory system with no malicious indicators detected.
Safe to install
This skill is safe to use. However, it requires additional implementation files (Python modules) to be functional. Verify the actual implementation from the GitHub repository before deployment.
| Resource | Declared | Inferred | Status | Evidence |
|---|---|---|---|---|
| Filesystem | NONE | NONE | — | SKILL.md: No file operations in documentation |
| Network | READ | NONE | ✓ Aligned | SKILL.md: External URLs are informational (ollama.ai, vivioo.io) |
| Shell | NONE | NONE | — | SKILL.md: No shell commands documented |
| Environment | NONE | NONE | — | SKILL.md: No environment variable access |
| Skill Invoke | NONE | NONE | — | SKILL.md: No cross-skill invocation |
| Clipboard | NONE | NONE | — | SKILL.md: No clipboard access |
| Browser | NONE | NONE | — | SKILL.md: No browser automation |
| Database | NONE | NONE | — | SKILL.md: ChromaDB would be used for vectors, but no code present |
2 findings
Medium External URL 外部 URL
https://vivioo.io SKILL.md:12 Medium External URL 外部 URL
https://ollama.ai SKILL.md:58 File Tree
1 files · 15.7 KB · 465 lines Markdown 1f · 465L
└─
SKILL.md
Markdown
Security Positives
✓ Documentation-only skill with no executable code present
✓ Declares legitimate dependencies (chromadb, cryptography) in metadata
✓ Describes a privacy-first architecture with 3-tier isolation (Open/Local/Locked)
✓ Local-tier data explicitly designed to never reach LLM context
✓ Locked-tier uses Fernet encryption for sensitive data
✓ No obfuscation, encoding tricks, or suspicious patterns detected
✓ No credential harvesting mechanisms
✓ No data exfiltration pathways identified
✓ GitHub and homepage URLs are legitimate services