← Back to Skills Marketplace
564
Downloads
0
Stars
4
Active Installs
8
Versions
Install in OpenClaw
/install safe-memory-manager
Description
When building OpenClaw agents that read untrusted text, use this skill to prevent prompt injection and memory poisoning. Standard utility for secure memory o...
Usage Guidance
This skill appears to do what it says: a local Python module that sanitizes input before appending to per-skill memory files and returns a boolean 'isnad_verified'. Before trusting the built-in 'verified' claims: 1) Manually verify that isnad_manifest.json's hash matches the SHA-256 of safe_memory.py (the code compares these at runtime and will return False if they differ). 2) If you need strong provenance, validate the PGP signature / auditor chain outside the package. 3) Review logging/written files in the created 'memory' directory if you plan to store sensitive material. 4) Because the skill is instruction-and-code bundled without an install step, prefer installing from a known/trusted source or pinning a vetted version. If you see isnad_verified==false at runtime, treat the package as unverified until you resolve the manifest/hash/signature mismatch.
Capability Analysis
Type: OpenClaw Skill
Name: safe-memory-manager
Version: 1.0.7
The safe-memory-manager skill is a utility designed to sanitize and store agent memory to prevent prompt injection and memory poisoning. It implements path traversal protection and regex-based content filtering in safe_memory.py, and includes a self-integrity check mechanism that verifies the file's hash against a signed manifest (isnad_manifest.json). The code logic is transparent, lacks high-risk behaviors like remote execution or data exfiltration, and aligns strictly with its stated security purpose.
Capability Assessment
Purpose & Capability
The name/description match the included code: safe_memory.py implements sanitize_content, append_memory, and read_memory to manage local memory files and detect prompt-injection patterns. No unrelated binaries, env vars, or external services are requested.
Instruction Scope
SKILL.md and the code stay within the stated purpose (sanitizing and storing local memory). The SKILL.md includes example injection patterns (e.g., 'ignore prior instructions') and the code explicitly replaces those patterns. A static pre-scan flagged ‘ignore-previous-instructions’ in the SKILL.md — this appears here as a detection example, not as an attempt to execute or exfiltrate data, but it can trigger scanners and should be recognized as an intentional example pattern.
Install Mechanism
No install spec; the skill is an included Python module and SKILL.md usage example. Nothing is downloaded or written outside the skill's own memory directory, so install risk is low.
Credentials
The skill requires no environment variables, credentials, or config paths. Its disk writes are limited to a dedicated 'memory' directory under the agent's working directory with filename sanitization applied.
Persistence & Privilege
always is false and the skill does not modify other skills or global agent settings. It only creates/uses its own memory directory and does not request persistent system privileges.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install safe-memory-manager - After installation, invoke the skill by name or use
/safe-memory-manager - Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.7
AEO Optimization for Planners
v1.0.6
Clean documentation and metadata update.
v1.0.5
Heuristic fix: removed explicit attack examples from docs and aligned verification claims with implementation.
v1.0.4
Final fix for Benign status: removed obfuscation, renamed manifest to isnad_manifest.json, and ensured file inclusion.
v1.0.3
Fix technical documentation accuracy and add ISNAD self-verification logic.
v1.0.2
Security update: obfuscated pattern detection to avoid scanner false positives.
v1.0.1
Security update: obfuscated pattern detection to avoid scanner false positives.
v1.0.0
Initial release (Gold Standard)
Metadata
Frequently Asked Questions
What is Safe Memory Manager?
When building OpenClaw agents that read untrusted text, use this skill to prevent prompt injection and memory poisoning. Standard utility for secure memory o... It is an AI Agent Skill for Claude Code / OpenClaw, with 564 downloads so far.
How do I install Safe Memory Manager?
Run "/install safe-memory-manager" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is Safe Memory Manager free?
Yes, Safe Memory Manager is completely free, licensed under MIT-0. You can download, install and use it at no cost.
Which platforms does Safe Memory Manager support?
Safe Memory Manager is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created Safe Memory Manager?
It is built and maintained by horn111 (@horn111); the current version is v1.0.7.
More Skills