中文 EN

扫描报告

扫描新文件

可信 — 风险评分 5/100
上次扫描:1 天前 重新扫描
5 /100
better-memory
One-shot smart installation and ongoing maintenance for a native OpenClaw memory stack with L1 daily logs, L2 sidecar summaries, and L3 weekly rollups
This is a legitimate memory management skill that operates strictly within declared filesystem boundaries, uses no shell execution, makes no network requests, and accesses no sensitive credentials.
技能名称better-memory
分析耗时45.2s
引擎pi
可以安装
This skill is safe to use. No security concerns identified.
资源类型声明权限推断权限状态证据
文件系统 WRITE WRITE ✓ 一致 All scripts use Path.write_text/read_text within workspace scope
命令执行 NONE NONE No subprocess calls found in any script
网络访问 NONE NONE No network requests in any script
环境变量 NONE NONE No environment variable access for sensitive data
技能调用 NONE NONE No cross-skill invocation detected
数据库 NONE NONE No database access
剪贴板 NONE NONE No clipboard access
浏览器 NONE NONE No browser automation

目录结构

16 文件 · 80.8 KB · 2240 行
Python 13f · 2066L Markdown 2f · 170L YAML 1f · 4L
├─ 📁 agents
│ └─ 📋 openai.yaml YAML 4L · 252 B
├─ 📁 references
│ └─ 📝 memory-schema.md Markdown 97L · 2.7 KB
├─ 📁 scripts
│ ├─ 🐍 apply_monthly_cleanup.py Python 205L · 7.2 KB
│ ├─ 🐍 bootstrap_memory.py Python 379L · 13.7 KB
│ ├─ 🐍 capture_memory.py Python 119L · 3.9 KB
│ ├─ 🐍 emit_cron_template.py Python 73L · 2.6 KB
│ ├─ 🐍 install_heartbeat_memory_os.py Python 79L · 3.1 KB
│ ├─ 🐍 memory_os_common.py Python 102L · 3.5 KB
│ ├─ 🐍 promote_legacy_memory.py Python 151L · 6.0 KB
│ ├─ 🐍 refine_memory.py Python 710L · 25.4 KB
│ ├─ 🐍 run_daily_review.py Python 48L · 1.8 KB
│ ├─ 🐍 run_monthly_review.py Python 30L · 1004 B
│ ├─ 🐍 run_weekly_rollup.py Python 29L · 863 B
│ ├─ 🐍 smart_install.py Python 75L · 3.4 KB
│ └─ 🐍 uninstall_memory_os.py Python 66L · 2.1 KB
└─ 📝 SKILL.md Markdown 73L · 3.3 KB

安全亮点

✓ All filesystem writes scoped to workspace, memory/, and .openclaw-memory-os/
✓ No subprocess or shell execution - pure Python pathlib operations
✓ No network requests or external communications
✓ No credential harvesting or sensitive file access (~/.ssh, ~/.aws, .env)
✓ No code obfuscation, base64 encoding, or eval usage
✓ Comprehensive input validation on CLI arguments (time format, day validation)
✓ Monthly cleanup requires explicit user approval before applying changes
✓ Migration policy preserves existing memory - no destructive auto-import
✓ Cron templates are generated as text files, not auto-installed
✓ Documentation accurately describes all implemented functionality