← 返回 Skills 市场
73
总下载
0
收藏
0
当前安装
1
版本数
在 OpenClaw 中安装
/install trident-plugin
功能描述
Three-tier persistent memory architecture for OpenClaw agents with daily episodic logs, curated long-term memory, semantic recall, and WAL-based continuity w...
安全使用建议
This plugin appears to implement the described three-tier memory system, but there are several things you should verify before installing:
- Inspect the plugin code (index.ts, scripts/install.sh, scripts/activate.sh or equivalent) before activation to see exactly what is scheduled and what runs as a cron job. Confirm whether cron uses the system crontab or a user-level scheduler and which user account will run it.
- Confirm which environment variables or credentials the plugin will read at runtime. The docs reference Qdrant API keys, FalkorDB keys, GitHub SSH, and Hostinger API — but the registry metadata lists none. If you plan to enable backups or semantic recall, prepare secrets and verify where/how they are stored and transmitted.
- Review the activation behavior for 'auto-approve' of the AGENT-PROMPT.md template. The docs say activation auto-approves the template; prefer to manually verify template integrity and run template-verify before enabling scheduled runs.
- If you will use GitHub/Hostinger backups, check code that performs the backup to ensure it only uploads the intended files and that SSH/private keys or API tokens are used in a limited, explicit way. Ideally use a deploy key or service token with minimal scope.
- Run the plugin in a sandboxed or non-production workspace first (backup your existing memory), and confirm the audit logs and template verification features work as advertised. Disable optional networked features (Qdrant/Git backup/Hostinger) until you have audited credential handling.
If you want, I can list the specific files and lines to inspect (index.ts, plugin-manifest.json, any referenced install/activate scripts) and summarize any network endpoints or exec calls I find.
功能分析
Type: OpenClaw Skill
Name: trident-plugin
Version: 1.0.0
The Trident plugin is a high-privilege memory management system that implements persistence via cron-scheduling and requests broad file access to the OpenClaw workspace, including sensitive .git metadata (plugin-manifest.json). While its features are aligned with the stated purpose of 'ambient memory,' it includes capabilities for external data exfiltration under the guise of backups to GitHub and Hostinger APIs (SKILL.md, README.md). The presence of a 'wipe_on_upgrade' flag in the configuration schema and the reliance on external lifecycle scripts (scripts/install.sh, scripts/activate.sh) that are referenced but not fully provided for analysis constitute a significant security risk.
能力标签
能力评估
Purpose & Capability
The name/description (three-tier memory, WAL, Qdrant, Git backups) align with the instructions and docs. However the registry metadata declares no required environment variables or credentials while the documentation repeatedly references GitHub SSH, Hostinger API snapshots, Qdrant API keys and embedding credentials — optional features that clearly require secrets. This mismatch between claimed 'no required env vars' and documented external integrations is a notable inconsistency.
Instruction Scope
Runtime instructions tell the agent to create a memory directory structure, schedule a recurring 'Layer 0.5' cron job, copy/execute a user-facing AGENT-PROMPT.md template, and (optionally) connect to external services (Qdrant, FalkorDB, GitHub, Hostinger). The docs also indicate the template is auto-approved on activation. Creating cron jobs and executing templated routing logic gives the plugin persistent autonomy and the ability to process messages regularly; that scope is legitimate for a memory plugin but increases risk and should be explicit to the user. The SKILL.md instructs reading/writing only to memory/ but also references reading openclaw.json and system cron; the instructions are not vague but the impact (scheduled execution & network I/O when optional features enabled) requires explicit confirmation and review.
Install Mechanism
There is no install spec in the registry (instruction-only), but multiple code and manifest files (index.ts, package.json, plugin-manifest.json, scripts referenced in docs) are present. That is not malicious by itself, but means actual behavior will depend on plugin code (not visible to the installer until inspected). Because cron jobs and activation scripts are documented, users should audit those scripts (activate/install) before running them. No external download URLs with high-risk patterns are present in SKILL.md.
Credentials
The package metadata lists no required env vars, yet the docs and config.schema reference API keys and secrets (qdrant_api_key, falkordb_graph_key, GitHub SSH for backups, Hostinger API). The Completion/README also explicitly says 'API keys expected from environment.' Requesting access to SSH/API credentials for backups and vector services would be proportionate to the plugin's optional features — but the registry should declare them. The absence of declared required env vars is inconsistent and could cause surprise credential exposure at runtime if the plugin looks up environment variables not documented in the registry.
Persistence & Privilege
always:false (normal). The plugin intends to create files under the workspace memory directory, install a cron job for Layer 0.5, and (optionally) initialize Git backups. Those are expected for a persistent memory system but are persistent actions with potentially wide impact (scheduled tasks, file writes, backups to remote services). This is expected functionality, but the user should confirm exactly how cron is scheduled (system vs user cron), under which user identity it runs, and what network access the cron job will have.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install trident-plugin - 安装完成后,直接呼叫该 Skill 的名称或使用
/trident-plugin触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.0
- Initial release of Trident, a three-tier persistent memory architecture for OpenClaw agents.
- Supports real-time signal classification, hierarchical Markdown storage, and daily versioned backups.
- Integrates semantic recall with Qdrant and FalkorDB for contextual memory retrieval.
- Implements write-ahead logging (WAL) for zero data loss and lossless context management.
- Exposes tools for memory search, expansion, update, and recall.
- Compatible with OpenClaw 2026.4.0+ and designed without vendor lock-in.
元数据
常见问题
Trident Memory System 是什么?
Three-tier persistent memory architecture for OpenClaw agents with daily episodic logs, curated long-term memory, semantic recall, and WAL-based continuity w... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 73 次。
如何安装 Trident Memory System?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install trident-plugin」即可一键安装,无需额外配置。
Trident Memory System 是免费的吗?
是的,Trident Memory System 完全免费,采用 MIT-0 许可证,可自由下载、安装和使用。
Trident Memory System 支持哪些平台?
Trident Memory System 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 Trident Memory System?
由 Shiva&G(@shivaclaw)开发并维护,当前版本 v1.0.0。
推荐 Skills