← 返回 Skills 市场
Memory Keeper
作者
CrimsonDevil333333
· GitHub ↗
· v1.0.1
2095
总下载
0
收藏
7
当前安装
4
版本数
在 OpenClaw 中安装
/install memory-keeper
功能描述
Copy and snapshot all important agent context (MEMORY.md, memory/*.md, AGENTS.md, SOUL.md, etc.) into a dedicated archive directory or repo. Use this skill when you want to back up your memories, context, or configuration files in preparation for maintenance, corruption recovery, or transferring to another host.
安全使用建议
This skill appears to do exactly what it claims: back up your agent memory files and optionally commit/push them to a git repo. Before installing or running it: (1) ensure you have git installed if you plan to use --commit/--push; (2) set the --target to a local path you control and review the archive after a dry run to confirm only intended files were copied; (3) be careful with --allow-extra — it can include any file/glob from your workspace (avoid adding secrets, keys, or tokens); (4) when using --remote/--push, only push to repositories you control — embedding credentials in remote URLs or pushing to unknown remotes can exfiltrate data; (5) note the tool appends a timestamped entry to memory/YYYY-MM-DD.md (it modifies your workspace logs) — if you want a read-only snapshot, inspect the code or run it against a copied workspace first. If you want higher assurance, review the bundled scripts (memory_sync.py) and run the unit tests locally.
功能分析
Type: OpenClaw Skill
Name:
Developer:
Version:
Description: OpenClaw Agent Skill
Suspicious High-Entropy/Eval files: 2
The `scripts/memory_sync.py` skill is classified as suspicious due to its broad file access and network capabilities. Specifically, the `--allow-extra` argument allows copying arbitrary files or directories from the agent's workspace (or paths accessible via globs from the workspace) to a target archive. This, combined with the ability to configure an arbitrary git remote URL and push all committed changes to it, creates a significant risk of data exfiltration if the skill is invoked with malicious parameters. These capabilities are explicitly documented in `SKILL.md`, `README.md`, and `references/usage.md` as features, but they lack sufficient safeguards to prevent misuse for exfiltrating sensitive data beyond the stated purpose of backing up agent context.
能力评估
Purpose & Capability
The code and SKILL.md match the stated purpose: copying memory/*.md and specific top-level docs into a target archive and optionally committing/pushing to git. Minor incoherence: the skill metadata lists no required binaries, but the implementation uses the 'git' CLI via subprocess when commit/push options are used; the README and references mention git but the metadata should declare git as a dependency.
Instruction Scope
Runtime instructions and the script stay within the stated backup/snapshot purpose. The script appends a log entry into memory/YYYY-MM-DD.md (explicitly documented), preserves directory structure, and supports copying extra globs via --allow-extra. Those extra-glob and --remote/--push options are useful for the feature but allow the user to include arbitrary files (including secrets) and to push archives to any remote URL — expected for a backup tool but worth caution.
Install Mechanism
No install spec (instruction-only skill with included Python script and tests). Nothing is downloaded or extracted during install; code is bundled in the skill. This is low install risk.
Credentials
No environment variables or credentials are declared or required by metadata. The script may require git credentials when pushing to a remote; SKILL.md/README explain token/SSH usage. Because the skill can be pointed at an arbitrary remote and supports embedding tokens in URLs (per the docs), users should avoid providing sensitive credentials to unknown remotes and be cautious with --allow-extra globs that could include secrets. The metadata could be clearer about the optional need for git and credential configuration.
Persistence & Privilege
always:false and user-invocable:true — the skill does not request permanent inclusion or elevated privileges. It does modify workspace memory logs (it intentionally writes a log entry) and writes into the target archive directory, which is expected behavior for a backup tool. It does not modify other skills' configs or system-wide settings.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install memory-keeper - 安装完成后,直接呼叫该 Skill 的名称或使用
/memory-keeper触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.1
memory-keeper 1.0.1
- Documentation update only: improved or clarified content in README.md.
- No changes to core functionality or features.
v1.0.0
Memory Keeper 1.0.0 initial release.
- Introduced core CLI tool for snapshotting important agent context files to a dedicated archive directory or git repo.
- Supports copying files such as MEMORY.md, AGENTS.md, SOUL.md, and related context/configuration files while preserving directory structure.
- Includes optional git integration for initializing repositories, committing, and pushing to remote branches.
- Added resources and links to documentation in SKILL.md.
- Introduced basic automated tests for core synchronization script.
v0.1.1
Add README and usage docs
v0.1.0
Initial release
元数据
常见问题
Memory Keeper 是什么?
Copy and snapshot all important agent context (MEMORY.md, memory/*.md, AGENTS.md, SOUL.md, etc.) into a dedicated archive directory or repo. Use this skill when you want to back up your memories, context, or configuration files in preparation for maintenance, corruption recovery, or transferring to another host. 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 2095 次。
如何安装 Memory Keeper?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install memory-keeper」即可一键安装,无需额外配置。
Memory Keeper 是免费的吗?
是的,Memory Keeper 完全免费(开源免费),可自由下载、安装和使用。
Memory Keeper 支持哪些平台?
Memory Keeper 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 Memory Keeper?
由 CrimsonDevil333333(@crimsondevil333333)开发并维护,当前版本 v1.0.1。
推荐 Skills