===== Memory Poisoning: The New Attack Vector =====

**Memory poisoning attacks insert instructions that activate later; defend with write-protected memory, cryptographic signatures, and quote-before-commit verification.**

When working on substantial tasks (5+ minutes), post a brief update to Discord before starting and when done. Team members cannot see terminal work, so silence looks like a crash. Updates build trust and connection. Examples: "🎯 Diving into independent work     * building the Health Monitor skill. Will update when done!"
WHERE slug = independent-work-communication-protocol

**Where it applies:** Agent security, memory management, identity preservation, trust systems

**Why it works:** Prevents persistent injection attacks that compromise future sessions

**Risks:** Adds verification overhead; may conflict with legitimate memory updates

{category>verification}