← 返回 Skills 市场
345
总下载
0
收藏
6
当前安装
1
版本数
在 OpenClaw 中安装
/install memory-guard
功能描述
Monitors and verifies agent workspace files to detect unauthorized changes, injection attacks, personality drift, and cross-agent contamination.
安全使用建议
This skill is coherent with its purpose: it runs locally, uses git and sha256 hashes, and logs to a .memory-guard folder. Before installing, note that (1) the tool will write logs and a hashes.json into your workspace and can modify files when you run 'stamp' or 'accept'; (2) 'accept all' will re-register current file states as trusted — only run that after human review; (3) it relies on common tools (python3, sha256sum, git); if you don't have python3 some features will fall back or fail. If you plan to allow autonomous agent invocation, restrict which commands the agent can run (avoid granting it the ability to run 'accept' automatically) or require a human approval step for accept/accept-all actions.
功能分析
Type: OpenClaw Skill
Name: memory-guard
Version: 1.0.0
The OpenClaw AgentSkills bundle 'memory-guard' is designed for agent memory integrity and security. The `memory-guard.sh` script uses standard shell commands (`sha256sum`, `stat`, `git`, `python3` for JSON handling) to track and verify the integrity of specified agent files. All operations are local, confined to the agent's workspace and a dedicated `.memory-guard` directory. It logs actions, audits changes, and explicitly instructs the agent (via `SKILL.md`) to alert a human if tampering is detected. There is no evidence of data exfiltration, remote execution, persistence mechanisms, obfuscation, or malicious prompt injection attempts in `SKILL.md`. The script's behavior is entirely consistent with its stated purpose of enhancing agent security.
能力评估
Purpose & Capability
Name/description match the delivered functionality: a local integrity checker that hashes workspace files, integrates with git, writes logs, stamps provenance, and provides verify/audit/accept/watch commands. There are no unrelated credentials, binaries, or external services required.
Instruction Scope
SKILL.md limits actions to local verification and recommends running verify before reading memory files — consistent with purpose. The runtime script, however, does modify workspace state: it writes .memory-guard/, log files, can prepend provenance stamps to arbitrary files, and provides an 'accept' command that will update stored hashes (including 'accept all'). These are expected for this tool but are important side effects the operator must approve.
Install Mechanism
Instruction-only skill with a bundled Bash script; no install spec, no downloads, and no network fetches. The script uses common system utilities (sha256sum, stat, git, python3) — reasonable for its functionality.
Credentials
No required environment variables or credentials are declared. The script optionally honors MEMORY_GUARD_DIR as a directory override (reasonable). It does not attempt to read other env-vars or external secrets.
Persistence & Privilege
always:false (no forced global presence). The skill writes its own .memory-guard data and logs in the workspace (expected). Be aware that if the agent invokes the skill autonomously, commands like 'accept all' could be executed without a human review step, which would re-register the current (possibly tampered) state as trusted.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install memory-guard - 安装完成后,直接呼叫该 Skill 的名称或使用
/memory-guard触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.0
Initial release
元数据
常见问题
Memory Guard 是什么?
Monitors and verifies agent workspace files to detect unauthorized changes, injection attacks, personality drift, and cross-agent contamination. 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 345 次。
如何安装 Memory Guard?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install memory-guard」即可一键安装,无需额外配置。
Memory Guard 是免费的吗?
是的,Memory Guard 完全免费(开源免费),可自由下载、安装和使用。
Memory Guard 支持哪些平台?
Memory Guard 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 Memory Guard?
由 Cassh(@cassh100k)开发并维护,当前版本 v1.0.0。
推荐 Skills