← Back to Skills Marketplace
marcosathanasoulis

OpenClaw Universal Memory

by Marcos Athanasoulis · GitHub ↗ · v1.0.0
cross-platform ⚠ suspicious
707
Downloads
0
Stars
2
Active Installs
1
Versions
Install in OpenClaw
/install openclaw-universal-memory
Description
Generic Postgres and pgvector memory layer for connector-agnostic data ingestion, incremental sync, and searchable chunk storage with cursor history.
Usage Guidance
This skill is plausible for providing a Postgres/pgvector memory layer, but the package that actually implements the functionality is not included in the bundle and the registry metadata fails to declare the DATABASE_DSN requirement—do not install or run until you: 1) obtain and review the full Python package (pyproject/setup and src/openclaw_memory) so you can inspect connector implementations and where secrets are stored; 2) provide the database DSN via a secure OS secret store or environment (avoid passing secrets on the command line); 3) use least-privilege DB credentials limited to the um_* tables; 4) verify what configure-dsn does (where it writes config, file permissions, encryption); and 5) audit any connector code before enabling ingestion (connectors will call external APIs and require credentials). If you cannot review the missing package code, treat this skill as untrusted and do not run it against production or sensitive databases.
Capability Analysis
Type: OpenClaw Skill Name: openclaw-universal-memory Version: 1.0.0 The skill bundle is classified as suspicious due to multiple potential prompt injection vulnerabilities against the AI agent and the underlying `openclaw_memory.cli` module. The `SKILL.md` documentation provides commands that accept user-controlled arguments such as `--dsn`, `--input`, `--query`, and `--connector-config`. The `scripts/run_memory.py` script passes these arguments directly to `subprocess.run`, which could lead to arbitrary file reads (via `--input`), SQL injection (via `--query`), or DSN exposure if the agent is prompted to provide sensitive values. While the `SKILL.md` includes security advice (e.g., not passing raw passwords in command-line arguments), the `--dsn` argument is still accepted by `run_memory.py` for the `configure-dsn` action, creating an inconsistency. There is no evidence of intentional malicious behavior like data exfiltration or persistence mechanisms in the provided files.
Capability Assessment
Purpose & Capability
The name/description match the included launcher script: it runs an openclaw_memory CLI to manage pgvector-backed memory and ingestion. However the registry metadata declares no required env vars or binaries, while SKILL.md and the script expect a DATABASE_DSN (or --dsn/--dsn-file) and a locally installed package (pip install -e .). The distributed bundle does not include the package under src/ (only a scripts wrapper), so installing/running as instructed will fail or will depend on code you must obtain separately. Connectors (google/slack/asana/iMessage) are referenced but their credentials and connector code are not included or declared.
Instruction Scope
SKILL.md gives concrete CLI invocations that only interact with a local Postgres DSN; the provided script only spawns the openclaw_memory.cli module (no network calls in the wrapper). But the skill delegates connector work to external connector code (not included), which likely calls external APIs and requires additional credentials/config. The skill also supports configure-dsn which may persist secrets to disk (via underlying CLI), and while the README warns against passing secrets on the command line, the wrapper accepts --dsn and will place it into the subprocess environment—this is potentially mishandled if the underlying CLI writes config files or logs. The instructions are otherwise specific, not overly open-ended.
Install Mechanism
There is no install spec in the registry. SKILL.md instructs the user to run 'pip install -e .' to install the package, but the bundle does not include a pyproject/setup or the package sources under src/ (only a wrapper script and references). That means the instructions require installing code that is not bundled; installation as-is will either fail or pull code from an external source you must obtain separately. This missing packaging makes the skill incoherent and increases risk because behavior depends on external code not provided for review.
Credentials
The skill declares no required environment variables in the registry, yet SKILL.md and the script expect a DATABASE_DSN (default env name DATABASE_DSN) and connectors will require service credentials. The absence of declared env requirements is misleading. The skill recommends least-privilege DB credentials, but provides no enforced mechanism for credential protection (configure-dsn may persist secrets—location unspecified).
Persistence & Privilege
The skill does not request 'always: true' and uses normal agent invocation settings. It does not try to modify other skills or system-wide configuration in the provided wrapper. The only persistence risk is that the underlying CLI (not included) might write DSN/config files; the wrapper forwards --config-path to that CLI, so review where configure-dsn stores secrets before using it.
How to Use
  1. Make sure OpenClaw is installed (local or Docker)
  2. Run the install command in chat: /install openclaw-universal-memory
  3. After installation, invoke the skill by name or use /openclaw-universal-memory
  4. Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.0
Initial release: connector-driven memory ingestion, validation, scheduling docs, and secure DSN setup
Metadata
Slug openclaw-universal-memory
Version 1.0.0
License
All-time Installs 2
Active Installs 2
Total Versions 1
Frequently Asked Questions

What is OpenClaw Universal Memory?

Generic Postgres and pgvector memory layer for connector-agnostic data ingestion, incremental sync, and searchable chunk storage with cursor history. It is an AI Agent Skill for Claude Code / OpenClaw, with 707 downloads so far.

How do I install OpenClaw Universal Memory?

Run "/install openclaw-universal-memory" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is OpenClaw Universal Memory free?

Yes, OpenClaw Universal Memory is completely free (open-source). You can download, install and use it at no cost.

Which platforms does OpenClaw Universal Memory support?

OpenClaw Universal Memory is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).

Who created OpenClaw Universal Memory?

It is built and maintained by Marcos Athanasoulis (@marcosathanasoulis); the current version is v1.0.0.

More Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191115 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 Comments