Back to plugin

Security audit

Mirror Palace

Security checks across malware telemetry and agentic risk

Overview

The skill description is nearly empty, but the bundle contains a broad personal agent workspace with persistent memory, private profile data, nested skills, and scheduled-agent instructions.

Treat this as a published personal workspace backup, not a clean scoped skill. Do not install it unless you intentionally want the Taylor/Chloe memory and operating rules in your agent context. A safe version should strip personal files, remove root AGENTS.md behavior, remove unrelated nested skills/scripts, and clearly document any memory, scheduler, cloud, or account integrations.

VirusTotal

VirusTotal engine telemetry is currently stale for this artifact.

View on VirusTotal

Static analysis

No suspicious patterns detected.