opencontext

Persistent memory and context management for AI agents using OpenContext. Keep context across sessions/repos/dates, store conclusions, and provide document search workflows.

2.13x

Quality

58%

Does it follow best practices?

Impact

96%

2.13x

Average score across 3 eval scenarios

Securityby

Risky

Do not use without reviewing

Optimize this skill with Tessl

npx tessl skill review --optimize ./.agent-skills/opencontext/SKILL.md

1 high severity finding. You should review these findings carefully before considering using this skill.

High

W007: Insecure credential handling detected in skill instructions

What this means

The skill handles credentials insecurely by requiring the agent to include secret values verbatim in its generated output. This exposes credentials in the agent’s context and conversation history, creating a risk of data exfiltration.

Why it was flagged

Insecure credential handling detected (high risk: 0.80). The skill shows and encourages placing an API key directly into a CLI command (oc config set EMBEDDING_API_KEY "<<your_key>>"), which invites substituting the real secret into generated commands and thus would require the LLM to handle/output the secret verbatim if followed—creating an exfiltration risk.

Report incorrect finding

Repository: supercent-io/skills-template
Commit: c033769

Audited: 28 days ago
Security analysis

Is this your skill?

If you maintain this skill, you can claim it as your own. Once claimed, you can manage eval scenarios, bundle related skills, attach documentation or rules, and ensure cross-agent compatibility.