← Back to Skills Marketplace
120
Downloads
0
Stars
0
Active Installs
2
Versions
Install in OpenClaw
/install openclaw-memory-kit
Description
Scaffold, sanitize, or share an OpenClaw multi-agent memory system with a reusable workspace, memory-lancedb-pro configuration, role prompts, task-board conv...
Usage Guidance
This package is documentation-heavy and claims to scaffold a sanitized OpenClaw memory workspace, but it does not include the referenced bootstrap PowerShell script or any installer. Before running anything that writes files or installs npm packages: 1) ask the publisher for the bootstrap script source or view its full contents so you can inspect it; 2) do not paste or copy your live .env or secrets — follow the sanitization checklist; 3) run any generator or npm installs in an isolated directory or container and back up your existing OpenClaw state; 4) verify npm package names and versions against the official registry (and prefer pinned versions you trust); and 5) if you want to let the agent run commands, require explicit confirmation for each filesystem or network action. If the maintainer cannot provide the actual bootstrap script or an explicit install manifest, treat this skill as incomplete and avoid running ad-hoc scripts fetched from unverified sources.
Capability Analysis
Type: OpenClaw Skill
Name: openclaw-memory-kit
Version: 0.2.1
The skill bundle provides a framework for scaffolding and sanitizing OpenClaw memory workspaces, which involves high-risk operations such as executing a PowerShell script (bootstrap-openclaw-memory.ps1), installing npm packages (memory-lancedb-pro), and modifying the filesystem (SKILL.md, references/generated-files.md). While the documentation (references/sanitization.md) demonstrates a strong focus on security by explicitly forbidding the copying of secrets, API keys, or personal data, the reliance on shell execution and package management constitutes a significant attack surface. No clear evidence of malicious intent or data exfiltration was found, but the capabilities are inherently risky.
Capability Assessment
Purpose & Capability
The skill's stated purpose (scaffold/sanitize/share an OpenClaw memory workspace) matches the included documentation and role prompts. However, it promises a generator script (scripts/bootstrap-openclaw-memory.ps1) and runtime behavior (write state-local npm packages) while the package contains only docs and no bootstrap script or installer code — an inconsistency between claimed capability and delivered artifacts.
Instruction Scope
SKILL.md tells the agent (or user) to run a PowerShell bootstrap script, create and overwrite files under a target root, and optionally install npm plugins. Those actions modify local filesystem state and fetch packages over the network. The core problem: the instructions reference a script file that is not present in the skill bundle, leaving ambiguity about where the executable logic lives and increasing the risk the user will execute an unvetted script obtained elsewhere.
Install Mechanism
There is no install spec (instruction-only), which is low-risk in principle. But the instructions expect npm package installs and a bootstrap script to run; because neither the script nor an install mechanism is included, the skill depends on the environment or external downloads the skill does not provide or document explicitly.
Credentials
The skill does not request environment variables, credentials, or config paths. The documentation explicitly warns not to copy secrets and to use placeholders, which aligns with the stated sanitization goal.
Persistence & Privilege
The skill is not force-included (always: false) and does not request elevated or persistent privileges. allow_implicit_invocation is enabled in agents/openai.yaml (normal for skills) but this is not by itself a red flag.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install openclaw-memory-kit - After installation, invoke the skill by name or use
/openclaw-memory-kit - Provide required inputs per the skill's parameter spec and get structured output
Version History
v0.2.1
Refresh the memory kit for OpenClaw 2026.3.23-2 compatibility and update the official Feishu plugin guidance.
v0.2.0
v0.2.0: Three cross-platform bootstrap scripts (PowerShell / Bash / Python). Separated platform scripts for Windows, macOS, and Linux instead of a single Python entry point.
Metadata
Frequently Asked Questions
What is OpenClaw Memory Kit?
Scaffold, sanitize, or share an OpenClaw multi-agent memory system with a reusable workspace, memory-lancedb-pro configuration, role prompts, task-board conv... It is an AI Agent Skill for Claude Code / OpenClaw, with 120 downloads so far.
How do I install OpenClaw Memory Kit?
Run "/install openclaw-memory-kit" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is OpenClaw Memory Kit free?
Yes, OpenClaw Memory Kit is completely free, licensed under MIT-0. You can download, install and use it at no cost.
Which platforms does OpenClaw Memory Kit support?
OpenClaw Memory Kit is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created OpenClaw Memory Kit?
It is built and maintained by sune (@sora-mury); the current version is v0.2.1.
More Skills