AGENTSCORE-2026-0010: `memorix` risk change detected

memorix updated from 1.0.7 to 1.0.8. Score changed 90/100 to 80/100 (-10). Risk: LOW to MODERATE. 3 findings.

Package

• Name: memorix
• Version: 1.0.7 to 1.0.8
• Score: 90/100 to 80/100
• Risk: LOW to MODERATE

Findings

• [MEDIUM] excessive_dependencies: Package has 22 runtime dependencies (high attack surface)
• [LOW] unsafe_eval: Uses eval() with dynamic input (downgraded — mitigators detected in scope: test_fixture:test()
• [LOW] no_provenance: Package is not published with provenance attestations or trusted publishing. Published by: avids2

---

Full advisory: AGENTSCORE-2026-0010

Verdict API: curl https://agentscores.xyz/api/verdict?npm=memorix

Auto-published by AgentScore MCP security monitoring.