← 返回 Skills 市场
122
总下载
0
收藏
0
当前安装
1
版本数
在 OpenClaw 中安装
/install xiaobai-memory-guard
功能描述
记忆卫士 — 防止AI Agent记忆断层的安全网。每次session启动时自动扫描所有记忆文件,检测遗漏、验证连续性、生成健康报告。基于真实记忆断层事件设计。
安全使用建议
Do not clone or run the remote repo until you inspect its code. This package is documentation-only and references a scripts/memory-guard.mjs that is not included — the author instructs you to git clone a third‑party GitHub repo to obtain and execute that script. Before installing or scheduling it: 1) review the repository (scripts/memory-guard.mjs and any dependencies) for network calls, credential access, or data exfiltration; 2) run it in an isolated sandbox or ephemeral environment first; 3) avoid adding it to session startup or cron until you trust the code; 4) prefer a skill bundle that includes its code or an install spec so the code can be scanned/reviewed. If the upstream repo is provided and you can verify the script's behavior (no unexpected outbound connections, no secret harvesting), the coherence concerns would be resolved and the risk would be lower.
功能分析
Type: OpenClaw Skill
Name: xiaobai-memory-guard
Version: 1.0.0
The skill is a utility designed to prevent context loss in AI agents by scanning and validating 'memory' markdown files and session handoffs. The documentation (SKILL.md, README.md) describes a system for verifying file integrity, checking git logs for missing updates, and calculating a 'memory health score.' While it instructs the agent to execute a local script (scripts/memory-guard.mjs) and suggests optional cron job persistence for health checks, these actions are consistent with the stated purpose of maintaining long-term agent context. No evidence of data exfiltration, malicious prompt injection, or unauthorized access was found.
能力评估
Purpose & Capability
The skill's stated goal (detect missing memory files, validate continuity, compare git history) aligns with the actions described in SKILL.md (ls directories, read SESSION-HANDOFF.md, compare git log). However, the published package contains only documentation (SKILL.md, READMEs) and does not include the referenced runtime script (scripts/memory-guard.mjs). The README instructs users to git clone a third-party GitHub repo to obtain the script — this external dependency is necessary for the capability but is not included in the skill bundle, creating an incoherence between what is provided and what is required.
Instruction Scope
Instructions explicitly tell an agent/operator to run a node script that will list and read workspace files (memory/, notes/, SESSION-HANDOFF.md) and compare git logs — these file accesses are consistent with the stated purpose. However, SKILL.md also recommends integrating the script into session startup and cron jobs and instructs cloning code from an external repo before running; that places trust in external code execution which is outside the packaged skill and expands runtime authority.
Install Mechanism
There is no formal install spec in the package. SKILL.md instructs the user to run `git clone https://github.com/aptratcn/skill-memory-guard.git` to get the runnable script. Fetching and executing code from an external/third-party GitHub repository is higher-risk than an instruction-only skill because the fetched code could perform arbitrary I/O or network operations; the skill bundle gives no assurance the remote repo is safe. The GitHub host is a known service (lower risk than a personal server/IP), but the repo owner is not verified in the package metadata and the actual script is not present for review in this bundle.
Credentials
The skill requests no environment variables or credentials in metadata. The runtime behavior (reading local memory files, SESSION-HANDOFF.md, and git logs) is proportionate to the purpose and does not on its face require secrets. Still, reading workspace files can expose sensitive content (user data, tokens if stored in files), so filesystem access should be treated as sensitive even when no env vars are requested.
Persistence & Privilege
The skill metadata does not force persistent inclusion (always:false). SKILL.md recommends integrating the script into startup flows and cron jobs, which would grant it recurring execution on the host if the operator follows the instructions. That persistence is encouraged by the documentation but is not enforced by the registry metadata — it increases blast radius only after a user installs and schedules the external script.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install xiaobai-memory-guard - 安装完成后,直接呼叫该 Skill 的名称或使用
/xiaobai-memory-guard触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.0
Initial release
元数据
常见问题
xiaobai-memory-guard 是什么?
记忆卫士 — 防止AI Agent记忆断层的安全网。每次session启动时自动扫描所有记忆文件,检测遗漏、验证连续性、生成健康报告。基于真实记忆断层事件设计。 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 122 次。
如何安装 xiaobai-memory-guard?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install xiaobai-memory-guard」即可一键安装,无需额外配置。
xiaobai-memory-guard 是免费的吗?
是的,xiaobai-memory-guard 完全免费,采用 MIT-0 许可证,可自由下载、安装和使用。
xiaobai-memory-guard 支持哪些平台?
xiaobai-memory-guard 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 xiaobai-memory-guard?
由 Erwin(@aptratcn)开发并维护,当前版本 v1.0.0。
推荐 Skills