← 返回 Skills 市场
OpenClaw Universal Memory
作者
Marcos Athanasoulis
· GitHub ↗
· v1.0.0
707
总下载
0
收藏
2
当前安装
1
版本数
在 OpenClaw 中安装
/install openclaw-universal-memory
功能描述
Generic Postgres and pgvector memory layer for connector-agnostic data ingestion, incremental sync, and searchable chunk storage with cursor history.
安全使用建议
This skill is plausible for providing a Postgres/pgvector memory layer, but the package that actually implements the functionality is not included in the bundle and the registry metadata fails to declare the DATABASE_DSN requirement—do not install or run until you: 1) obtain and review the full Python package (pyproject/setup and src/openclaw_memory) so you can inspect connector implementations and where secrets are stored; 2) provide the database DSN via a secure OS secret store or environment (avoid passing secrets on the command line); 3) use least-privilege DB credentials limited to the um_* tables; 4) verify what configure-dsn does (where it writes config, file permissions, encryption); and 5) audit any connector code before enabling ingestion (connectors will call external APIs and require credentials). If you cannot review the missing package code, treat this skill as untrusted and do not run it against production or sensitive databases.
功能分析
Type: OpenClaw Skill
Name: openclaw-universal-memory
Version: 1.0.0
The skill bundle is classified as suspicious due to multiple potential prompt injection vulnerabilities against the AI agent and the underlying `openclaw_memory.cli` module. The `SKILL.md` documentation provides commands that accept user-controlled arguments such as `--dsn`, `--input`, `--query`, and `--connector-config`. The `scripts/run_memory.py` script passes these arguments directly to `subprocess.run`, which could lead to arbitrary file reads (via `--input`), SQL injection (via `--query`), or DSN exposure if the agent is prompted to provide sensitive values. While the `SKILL.md` includes security advice (e.g., not passing raw passwords in command-line arguments), the `--dsn` argument is still accepted by `run_memory.py` for the `configure-dsn` action, creating an inconsistency. There is no evidence of intentional malicious behavior like data exfiltration or persistence mechanisms in the provided files.
能力评估
Purpose & Capability
The name/description match the included launcher script: it runs an openclaw_memory CLI to manage pgvector-backed memory and ingestion. However the registry metadata declares no required env vars or binaries, while SKILL.md and the script expect a DATABASE_DSN (or --dsn/--dsn-file) and a locally installed package (pip install -e .). The distributed bundle does not include the package under src/ (only a scripts wrapper), so installing/running as instructed will fail or will depend on code you must obtain separately. Connectors (google/slack/asana/iMessage) are referenced but their credentials and connector code are not included or declared.
Instruction Scope
SKILL.md gives concrete CLI invocations that only interact with a local Postgres DSN; the provided script only spawns the openclaw_memory.cli module (no network calls in the wrapper). But the skill delegates connector work to external connector code (not included), which likely calls external APIs and requires additional credentials/config. The skill also supports configure-dsn which may persist secrets to disk (via underlying CLI), and while the README warns against passing secrets on the command line, the wrapper accepts --dsn and will place it into the subprocess environment—this is potentially mishandled if the underlying CLI writes config files or logs. The instructions are otherwise specific, not overly open-ended.
Install Mechanism
There is no install spec in the registry. SKILL.md instructs the user to run 'pip install -e .' to install the package, but the bundle does not include a pyproject/setup or the package sources under src/ (only a wrapper script and references). That means the instructions require installing code that is not bundled; installation as-is will either fail or pull code from an external source you must obtain separately. This missing packaging makes the skill incoherent and increases risk because behavior depends on external code not provided for review.
Credentials
The skill declares no required environment variables in the registry, yet SKILL.md and the script expect a DATABASE_DSN (default env name DATABASE_DSN) and connectors will require service credentials. The absence of declared env requirements is misleading. The skill recommends least-privilege DB credentials, but provides no enforced mechanism for credential protection (configure-dsn may persist secrets—location unspecified).
Persistence & Privilege
The skill does not request 'always: true' and uses normal agent invocation settings. It does not try to modify other skills or system-wide configuration in the provided wrapper. The only persistence risk is that the underlying CLI (not included) might write DSN/config files; the wrapper forwards --config-path to that CLI, so review where configure-dsn stores secrets before using it.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install openclaw-universal-memory - 安装完成后,直接呼叫该 Skill 的名称或使用
/openclaw-universal-memory触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.0
Initial release: connector-driven memory ingestion, validation, scheduling docs, and secure DSN setup
元数据
常见问题
OpenClaw Universal Memory 是什么?
Generic Postgres and pgvector memory layer for connector-agnostic data ingestion, incremental sync, and searchable chunk storage with cursor history. 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 707 次。
如何安装 OpenClaw Universal Memory?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install openclaw-universal-memory」即可一键安装,无需额外配置。
OpenClaw Universal Memory 是免费的吗?
是的,OpenClaw Universal Memory 完全免费(开源免费),可自由下载、安装和使用。
OpenClaw Universal Memory 支持哪些平台?
OpenClaw Universal Memory 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 OpenClaw Universal Memory?
由 Marcos Athanasoulis(@marcosathanasoulis)开发并维护,当前版本 v1.0.0。
推荐 Skills