ClawHub
Code PluginExecutes codesource-linked

Cortex Memory

Long-term memory system for OpenClaw AI Agent

Community code plugin. Review compatibility and verification before install.
openclaw-cortex-memory · runtime id openclaw-cortex-memory
Install
openclaw plugins install clawhub:openclaw-cortex-memory
Latest Release
Version 0.1.0-Alpha.8
Compatibility
{
  "builtWithOpenClawVersion": "0.1.0-Alpha.8",
  "pluginApiRange": ">=2026.3.22"
}
Capabilities
{
  "bundledSkills": [],
  "capabilityTags": [
    "executes-code",
    "tools"
  ],
  "channels": [],
  "commandNames": [],
  "configSchema": true,
  "configUiHints": false,
  "executesCode": true,
  "hooks": [
    "message_received",
    "session_end"
  ],
  "httpRouteCount": 0,
  "materializesDependencies": false,
  "providers": [],
  "runtimeId": "openclaw-cortex-memory",
  "serviceNames": [],
  "setupEntry": false,
  "toolNames": [
    "search_memory",
    "store_event",
    "query_graph",
    "get_hot_context",
    "get_auto_context",
    "reflect_memory",
    "sync_memory",
    "delete_memory",
    "diagnostics"
  ]
}
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Suspicious
medium confidence
!
Purpose & Capability
The code implements exactly the described memory features (archive, vector store, deduplication, reflection, session sync). However the registry metadata lists no required environment variables or credentials while SKILL.md and the code expect embedding/LLM/reranker API keys and base URLs; that mismatch is incoherent and worth flagging. The plugin also reads/writes OpenClaw config and creates a data/memory directory — behavior consistent with a memory plugin but not declared in metadata.
Instruction Scope
SKILL.md's runtime instructions and config focus on memory functionality and installation. The plugin will read and write local files (openclaw.json, memory data under plugin dir, schema/graph.schema.yaml) and may perform automated background operations (autoSync, autoReflect). autoReflect uses an LLM endpoint to generate rules from archived events — this means conversation content can be sent to external LLM/embedding endpoints if enabled. SKILL.md warns to keep autoReflect off until validated, which is appropriate; still, the ability to autonomously send historical conversational data to configured endpoints expands the plugin's scope and risk.
Install Mechanism
Installation instructions use pnpm/openclaw plugin install or an npm registry tarball (registry.npmjs.org) and a git clone. These are normal, well-known sources. There is no opaque download from an unknown host in the provided instructions. The package contains many compiled/dist files and a CLI script which will modify config — expected for this type of plugin.
!
Credentials
The plugin clearly requires API credentials (embedding.apiKey, llm.apiKey, reranker.apiKey or equivalent) and a Node.js runtime per SKILL.md and the source code (network requests to baseURL with Bearer tokens). Yet the registry metadata declares no required env vars or primary credential — an under-declaration. The plugin also reads and writes local storage under the agent project (dbPath/data/memory) and openclaw.json; those config and file accesses were not declared either. Asking for LLM/embedding keys is reasonable for its purpose, but the metadata omission is a coherence/visibility problem.
Persistence & Privilege
always is false (good). The provided CLI and code will modify openclaw.json to add/enable the plugin and will write data to a memory directory. Changing the agent config and creating persistent memory files is normal for a memory plugin, but combined with autonomous invocation (allowed by default) and network calls to LLM/embedding endpoints this increases the blast radius — especially if keys/endpoints are misconfigured or untrusted. SKILL.md recommends leaving autoReflect disabled by default.
Scan Findings in Context
[network_fetch_calls] expected: Code makes HTTP POST requests (fetch) to embedding and LLM endpoints using configured baseURLs and API keys. This is expected for a memory plugin that computes embeddings and uses LLMs for reflection/reranking, but it means conversational content and summaries will be transmitted to external endpoints if configured.
[child_process_spawn] expected: The CLI and index code use child_process.spawn / process.execPath for running uninstall scripts. This is expected for a CLI that manages plugin enable/disable/uninstall, but it has the usual risk of executing local scripts — verify scripts before running and prefer repository/package signatures.
[local_config_write] expected: The CLI writes to openclaw.json and the plugin writes to project data/memory paths. This is expected for a persistent memory plugin, but the registry metadata did not declare required config paths, so the write/read behavior is not visible from metadata alone.
What to consider before installing
This plugin appears to implement the long‑term memory features it claims, but there are two important mismatches to consider before installing: (1) the registry metadata does not declare the API keys and config files the plugin expects, and (2) the plugin will modify openclaw.json and create persistent memory files and can send archived/session content to external LLM/embedding endpoints if enabled. Recommendations: (a) only install from the official npm/ClawHub source or verified GitHub repo and inspect SIGNATURE.md and the package signature if provided; (b) review the code (especially scripts/cli.js and dist/index.js) and the CLI uninstall script before running; (c) do not enable autoReflect or autoSync until you’ve tested locally — these features will cause automatic network calls using your LLM/embedding keys; (d) provide API keys only to trusted endpoints (set explicit baseURL values) and consider using a limited-privilege key or a proxy if you must protect data; (e) run first in an isolated environment or staging instance and verify removal behavior (uninstall options) before enabling in production. If you want, I can point to the exact lines that send data externally and the config keys to verify or redact prior to installation.
scripts/cli.js:185
Shell command execution detected (child_process).
dist/index.js:486
Environment variable access combined with network send.
!
dist/index.js:543
File read combined with network send (possible exfiltration).
!
dist/src/reflect/reflector.js:43
File read combined with network send (possible exfiltration).
!
dist/src/session/session_end.js:45
File read combined with network send (possible exfiltration).
!
dist/src/store/read_store.js:45
File read combined with network send (possible exfiltration).
!
dist/src/store/write_store.js:78
File read combined with network send (possible exfiltration).
Patterns worth reviewing
These patterns may indicate risky behavior. Check the VirusTotal and OpenClaw results above for context-aware analysis before installing.
Verification
{
  "hasProvenance": false,
  "scanStatus": "clean",
  "scope": "artifact-only",
  "sourceCommit": "54087ccc239b54d6f768eda0a7bad4a0eb7b3b2f",
  "sourceRepo": "deki18/openclaw-cortex-memory",
  "sourceTag": "v0.1.0-Alpha.8",
  "summary": "Validated package structure and linked the release to source metadata.",
  "tier": "source-linked"
}
Tags
{
  "latest": "0.1.0-Alpha.8"
}

OpenClaw Cortex Memory

面向 OpenClaw 的长期记忆插件,集成多路检索、事件归档、图谱关系、向量化与反衰减排序,支持历史增量导入、规则反思和可观测诊断,帮助 Agent 在跨会话中持续积累并稳定调用高价值记忆。

发布签名见 [SIGNATURE.md]

功能特性

特性说明
语义检索search_memory 支持 query + top_k
事件存储store_event 将摘要写入归档
上下文注入get_hot_context / get_auto_context
增量同步sync_memory 按状态文件增量导入
规则演进reflect_memory 更新 CORTEX_RULES.md
运行诊断diagnostics 检查本地存储状态

记忆库组成与特点

组成结构

层级核心文件/数据作用
会话记忆层sessions/active/sessions.jsonl存储最近会话消息,支撑实时检索与上下文注入
事件归档层sessions/archive/sessions.jsonl存储已沉淀事件(摘要、实体、结果),用于长期回顾
实体关系层基于归档事件中的 entities / relations 字段动态构图支撑 query_graph 的实体共现与关系查询(派生图谱,不单独落盘)
向量检索层vector/lancedb(可用时)或 vector/lancedb_events.jsonl(回退)存储事件向量,用于语义检索与向量去重
规则知识层CORTEX_RULES.md存储由反思生成的可复用规则,供后续任务复用
运行状态层.sync_state.json / .session_end_state.json / .rule_store_state.json / .dedup_index.json / graph/mutation_log.jsonl记录增量同步、session_end 幂等、规则去重、三阶段去重索引、图谱变更审计日志
说明与入口层MEMORY.md记忆库说明与使用约定入口

核心特点

  • 分层记忆:把“原始会话、结构化事件、抽象规则”拆分存储,便于分别检索与治理
  • 图谱派生:实体关系来自事件层的 entities / relations,查询时动态生成图结构
  • 图谱治理:写入前按 schema/graph.schema.yaml 做 event/relation 规范化与关系规则校验
  • 会话结束写入:message hook 默认仅缓存,会在 session_end 后批量抽取并落盘
  • 增量导入:通过状态文件只处理新增会话内容,避免全量重复扫描
  • 幂等去重:对 session_end 事件和规则写入做签名判重,减少重复沉淀
  • 三阶段去重:SimHash 预过滤 → MinHash 精比对 → 向量余弦相似度
  • 自动演进:可结合 autoSyncautoReflect 持续把会话经验转化为长期可复用记忆
  • 可观测可诊断:通过 diagnostics 与状态文件快速定位数据目录、同步与反思异常

安装

前置要求

  • Node.js 22+
  • OpenAI API Key(或其他兼容 API)

安装步骤

快速安装(推荐,显式来源):

cd ~/openclaw
pnpm openclaw plugins install clawhub:openclaw-cortex-memory
pnpm openclaw plugins enable openclaw-cortex-memory

npm 安装方式:

cd ~/openclaw
pnpm openclaw plugins install openclaw-cortex-memory@alpha
pnpm openclaw plugins enable openclaw-cortex-memory

第三种安装方式(当 ClawHub/npm 解析受网络影响时):

curl -L -o /tmp/cortex.tgz https://registry.npmjs.org/openclaw-cortex-memory/-/openclaw-cortex-memory-0.1.0-Alpha.8.tgz
cd ~/openclaw
pnpm openclaw plugins install /tmp/cortex.tgz
pnpm openclaw plugins enable openclaw-cortex-memory
rm -f /tmp/cortex.tgz

后续更新:

cd ~/openclaw
pnpm openclaw plugins uninstall openclaw-cortex-memory
pnpm openclaw plugins install clawhub:openclaw-cortex-memory
pnpm openclaw plugins enable openclaw-cortex-memory

说明:

  • 推荐显式安装来源,减少 ClawHub-first 时代的来源歧义。
  • 使用 plugins install 的安装记录方式,避免 loaded without install/load-path provenance
  • 保持 plugins.allow 显式包含 openclaw-cortex-memory,避免运行时把插件判定为未绑定信任源。
  • plugins install openclaw-cortex-memory 在 ClawHub 解析阶段失败,可使用上述 tgz 方式直接安装。

本地开发模式(无安装记录)

cd ~/.openclaw/extensions
git clone https://github.com/deki18/openclaw-cortex-memory.git
cd openclaw-cortex-memory
npm install

npm install 不会自动构建 dist/,源码模式请显式执行 npm run build,且这种方式默认不写 OpenClaw 安装记录。

配置

openclaw.json 中添加:

{
  "plugins": {
    "allow": ["openclaw-cortex-memory"],
    "slots": { "memory": "openclaw-cortex-memory" },
    "entries": {
      "openclaw-cortex-memory": {
        "enabled": true,
        "config": {
          "engineMode": "ts",
          "dbPath": "<optional-memory-dir>",
          "autoSync": true,
          "autoReflect": false,
          "autoReflectIntervalMinutes": 30,
          "readFusion": {
            "enabled": true,
            "maxCandidates": 10,
            "authoritative": true
          },
          "memoryDecay": {
            "enabled": true,
            "minFloor": 0.15,
            "defaultHalfLifeDays": 90,
            "halfLifeByEventType": {
              "issue": 30,
              "fix": 30,
              "action_item": 30,
              "decision": 120,
              "preference": 240,
              "constraint": 240,
              "requirement": 240
            },
            "antiDecay": {
              "enabled": true,
              "maxBoost": 1.6,
              "hitWeight": 0.08,
              "recentWindowDays": 30
            }
          },
          "embedding": {
            "provider": "api",
            "model": "text-embedding-3-large",
            "apiKey": "${EMBEDDING_API_KEY}",
            "baseURL": "https://your-embedding-endpoint/v1",
            "dimensions": 3072
          },
          "llm": {
            "provider": "api",
            "model": "gpt-4",
            "apiKey": "${LLM_API_KEY}",
            "baseURL": "https://your-llm-endpoint/v1"
          },
          "reranker": {
            "provider": "api",
            "model": "BAAI/bge-reranker-v2-m3",
            "apiKey": "${RERANKER_API_KEY}",
            "baseURL": "https://your-reranker-endpoint/v1/rerank"
          }
        }
      }
    }
  }
}

关键功能开关(建议显式配置)

  • readFusion.enabled:开启多路召回后 LLM 融合
  • readFusion.authoritative:开启后仅返回融合后的权威记忆包
  • memoryDecay.enabled:开启按 event_type 半衰期衰减
  • memoryDecay.antiDecay.enabled:开启命中频次反衰减,避免高价值老记忆被过度衰减
  • autoReflect:建议在验证稳定后再开启;默认 false

配置项说明

配置项必填说明
embedding.provider建议使用 api(统一第三方接口模式)
embedding.model嵌入模型名称
embedding.dimensions向量维度,需与模型匹配
embedding.apiKeyEmbedding API Key(建议 ${EMBEDDING_API_KEY}
embedding.baseURLEmbedding API 端点
llm.provider建议使用 api
llm.modelLLM 模型名称
llm.apiKeyLLM API Key(建议 ${LLM_API_KEY}
llm.baseURLLLM API 端点
reranker.provider建议使用 api
reranker.modelReranker 模型名称
reranker.apiKeyReranker API Key(建议 ${RERANKER_API_KEY}
reranker.baseURLReranker API 端点
engineMode固定 ts
dbPath数据目录,默认 <plugin-dir>/data/memory
autoSync会话结束时自动同步历史记录,默认 true
autoReflect自动触发记忆反思,默认 false
autoReflectIntervalMinutes自动反思扫描间隔(分钟),默认 30,最小 5
readFusion.enabled启用重排后 LLM 融合,默认 true
readFusion.maxCandidates融合候选上限,默认 10
readFusion.authoritative仅返回融合权威记忆包,默认 true
memoryDecay.enabled启用按 event_type 的半衰期衰减,默认 true
memoryDecay.minFloor衰减系数下限(0~1),默认 0.15
memoryDecay.defaultHalfLifeDays未配置类型的默认半衰期(天),默认 90
memoryDecay.halfLifeByEventTypeevent_type 半衰期覆盖配置(天)
memoryDecay.antiDecay.enabled启用命中频次反衰减,默认 true
memoryDecay.antiDecay.maxBoost反衰减最大增益(>=1),默认 1.6
memoryDecay.antiDecay.hitWeight命中次数增益系数,默认 0.08
memoryDecay.antiDecay.recentWindowDays命中新鲜度窗口(天),默认 30

启动

pnpm openclaw config validate
pnpm openclaw gateway restart

主 Agent 注入说明

首次接入后,建议把下面这段发给主 Agent,确保其按记忆工作流执行:

你已接入 Cortex Memory。请遵循以下规则:
1) 当用户询问历史对话、偏好、项目上下文时,先调用 search_memory 再回答。
2) 需要当前会话热上下文时调用 get_hot_context。
3) 需要自动召回相关记忆时调用 get_auto_context。
4) 在一件重要事情结束并形成明确结果后,再调用 store_event 记录(不要在过程进行中频繁记录)。
5) 需要实体关联关系时调用 query_graph。
6) 当任务经历“失败→调整→最终成功”时,优先用 store_event 记录失败原因与成功方案,再调用 reflect_memory 沉淀可复用规则。
7) 需要导入历史会话时调用 sync_memory。
8) 出现配置校验失败、记忆读写异常、检索结果异常或数据目录问题时,优先调用 diagnostics。
9) 同一任务内不要反复调用 store_event 或 reflect_memory;仅在关键节点或任务收尾时触发一次。
10) 不要臆造历史事实;无法确认时必须先检索。

可用工具

工具说明
search_memory语义搜索记忆库,支持 top_k 参数
store_event存储事件,可包含实体和关系
query_graph查询实体关系图谱,支持关系过滤、方向过滤与路径查询
get_hot_context获取热上下文(CORTEX_RULES.md + 近期会话)
get_auto_context自动检索相关记忆 + 热上下文
reflect_memory触发记忆反思,将事件转化为规则
sync_memory同步 OpenClaw 历史会话(增量)
delete_memory删除指定记忆
diagnostics系统诊断

CLI 命令

CLI 命令需在插件目录运行:

npx cortex-memory status              # 查看插件状态
npx cortex-memory enable              # 启用插件
npx cortex-memory disable             # 禁用插件(回退到内置记忆)
npx cortex-memory uninstall           # 卸载插件
npx cortex-memory uninstall --keep-data  # 卸载但保留数据
npx cortex-memory help                # 查看命令帮助

数据存储

路径说明
<dbPath>/MEMORY.md记忆说明
<dbPath>/CORTEX_RULES.md规则文件
<dbPath>/sessions/active/sessions.jsonl活跃会话
<dbPath>/sessions/archive/sessions.jsonl归档事件
<dbPath>/vector/lancedbLanceDB 向量表(可用时)
<dbPath>/vector/lancedb_events.jsonl向量回退存储(LanceDB不可用时)
<dbPath>/.sync_state.json同步增量状态
<dbPath>/.session_end_state.jsonsession_end 幂等状态
<dbPath>/.rule_store_state.json规则去重状态
<dbPath>/.dedup_index.json三阶段去重索引
<dbPath>/.read_hit_stats.json检索命中频次统计(用于反衰减增益)
<dbPath>/graph/mutation_log.jsonl图谱写入审计日志(canonical_id/source_event_id/actor/timestamp)

注意事项

  1. API Key 安全:使用 ${EMBEDDING_API_KEY}${LLM_API_KEY}${RERANKER_API_KEY} 等环境变量而非硬编码
  2. 向量维度:必须与嵌入模型匹配,如 text-embedding-3-large 为 3072
  3. 重排序:可选配置 reranker 以提升检索精度
  4. 外部传输:检索与反思会调用你配置的 embedding/llm/reranker endpoint,请使用可信服务并最小化密钥权限
  5. 会话数据:启用 autoSync 时会读取 OpenClaw 会话文件并写入本地记忆目录,生产环境建议先小范围验证
  6. 单栈运行:当前版本为纯 TS,无 Python 运行时依赖
  7. 历史导入来源sync_memory 会同时导入 <openclaw_base>/agents/main/sessions/*.jsonl<openclaw_base>/workspace/memory/*.md
  8. 重复导入防护:每日总结 .md 会按文件内容哈希标记在 .sync_state.json,未变化文件不会重复导入

许可证

MIT License