← Back to Skills Marketplace
Automated daily memory backfill for OpenClaw sessions
by
mpesavento
· GitHub ↗
· v1.0.1
1280
Downloads
0
Stars
7
Active Installs
2
Versions
Install in OpenClaw
/install memory-sync
Description
Scrape and analyze OpenClaw JSONL session logs to reconstruct and backfill agent memory files. Use when: (1) Memory appears incomplete after model switches, (2) Verifying memory coverage, (3) Reconstructing lost memory, (4) Automated daily memory sync via cron/heartbeat. Supports simple extraction and LLM-based narrative summaries with automatic secret sanitization.
Usage Guidance
This tool legitimately needs access to your OpenClaw session JSONL and memory directories to do its job, and it includes extensive secret-detection patterns to redact sensitive data — but redaction claims alone do not guarantee safety. Before installing or scheduling it: 1) Review memory_sync.py (search for any network calls, hardcoded endpoints, or functions that send data to remote hosts). 2) Run in dry-run mode on non-sensitive test data and verify that SECRET_PATTERNS actually redact secrets before any network operations. 3) If you plan to use external summarization backends (openai/anthropic), be explicit about the API key you supply and understand that data will leave your machine; prefer the 'openclaw' backend if you trust your configured model. 4) Backup memory files first and test --preserve/--force behaviors so you don't overwrite user notes. 5) Consider running it in a restricted environment (container or isolated user) and restrict cron ownership/permissions. 6) Ask the publisher for a homepage, source repo, or reproducible build; absence of a source/homepage reduces transparency. If you cannot review the code yourself, treat this skill as high-risk for sensitive accounts and data.
Capability Analysis
Type: OpenClaw Skill
Name: memory-sync
Version: 1.0.1
The OpenClaw skill `memory-sync` is designed to process local OpenClaw session logs and generate daily memory files, optionally using LLM summarization. The code includes robust secret sanitization (`sanitize_content` function and `SECRET_PATTERNS` list in `memory_sync.py`) to prevent sensitive data from being written to memory files or sent to external LLM APIs (OpenAI, Anthropic). The `SKILL.md` instructions are aligned with the stated purpose and do not contain malicious prompt injection attempts. The skill's use of `subprocess.run` to call `openclaw sessions spawn` is an expected internal interaction within the OpenClaw ecosystem. All file system and network access (to LLM APIs) are consistent with its stated, benign purpose, with strong safeguards against data leakage.
Capability Assessment
Purpose & Capability
The skill claims to read OpenClaw session logs and produce memory files; the code references ~/.openclaw/agents/.../sessions and ~/.openclaw/workspace/memory which is coherent. It also supports optional external LLM backends (OpenAI/Anthropic) and an OpenClaw backend — that capability is expected for summarization. Minor mismatch: registry metadata lists no required environment variables but SKILL.md documents optional API keys (OPENAI_API_KEY, ANTHROPIC_API_KEY) for some backends; so metadata understates required credentials if you choose those backends.
Instruction Scope
SKILL.md and the code instruct the agent to read users' session logs and memory directories (highly sensitive data) and optionally send content to LLM backends for summarization. The README promises 'redaction at every stage' but the instructions also permit using external APIs (openai/anthropic) that would receive unredacted or partially redacted content unless you verify sanitization order. The SKILL.md grants broad discretion for daily automated runs (cron) and preserving/passing existing notes to the LLM, which increases the chance of sending sensitive content off-host. Instructions also reference writing logs to ~/.memory-sync/cron.log — normal but note it may contain sensitive filenames/operation traces.
Install Mechanism
No install spec is provided (instruction-only), which is lower risk. The SKILL.md notes pip installing click and optionally openai/anthropic packages; that is expected for a Python CLI. There are no external archive downloads or custom binary installs specified.
Credentials
Registry metadata declares no required env vars, but SKILL.md documents optional use of OPENAI_API_KEY and ANTHROPIC_API_KEY when selecting those backends. The shipping code contains a long list of sensitive environment variable names and many secret-detection regexes (used for sanitization) — appropriate for redaction but also an indicator the tool will scan for many secret types. Because the skill can be configured to call external APIs, API keys would be necessary for those modes; the registry metadata should have reflected that. Requesting or using unrelated credentials is not observed, but the mismatch is important.
Persistence & Privilege
always:false (default) so it is not force-included. Model invocation is allowed (default) which is normal. The skill is intended for scheduled (cron) use. Because it reads and writes user session and memory files, granting it regular/automated access raises sensitivity concerns: an autonomously-invoked skill that posts summaries to external backends increases exfiltration risk. No evidence it alters other skills or global agent config.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install memory-sync - After installation, invoke the skill by name or use
/memory-sync - Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.1
No user-facing changes in this release.
- Version bump only; no code or documentation modifications.
- All functionality remains identical to previous version.
v1.0.0
memory-sync 1.0.0
- Initial release of the memory-sync skill.
- Provides command-line tools to analyze OpenClaw JSONL session logs and backfill agent memory files, ensuring memory continuity across model switches.
- Supports both simple extraction (fast, no LLM) and LLM-based narrative summaries of session logs.
- Automatic secret sanitization with built-in support for 30+ secret patterns and defense-in-depth redaction.
- Includes workflow commands: compare, backfill (various modes), extract, summarize, transitions, validate, and stats.
- Configurable summarization backend (OpenClaw, Anthropic, OpenAI) and support for content preservation strategies.
Metadata
Frequently Asked Questions
What is Automated daily memory backfill for OpenClaw sessions?
Scrape and analyze OpenClaw JSONL session logs to reconstruct and backfill agent memory files. Use when: (1) Memory appears incomplete after model switches, (2) Verifying memory coverage, (3) Reconstructing lost memory, (4) Automated daily memory sync via cron/heartbeat. Supports simple extraction and LLM-based narrative summaries with automatic secret sanitization. It is an AI Agent Skill for Claude Code / OpenClaw, with 1280 downloads so far.
How do I install Automated daily memory backfill for OpenClaw sessions?
Run "/install memory-sync" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is Automated daily memory backfill for OpenClaw sessions free?
Yes, Automated daily memory backfill for OpenClaw sessions is completely free (open-source). You can download, install and use it at no cost.
Which platforms does Automated daily memory backfill for OpenClaw sessions support?
Automated daily memory backfill for OpenClaw sessions is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created Automated daily memory backfill for OpenClaw sessions?
It is built and maintained by mpesavento (@mpesavento); the current version is v1.0.1.
More Skills