--- name: complex-memory-manager description: > Privacy-aware structured memory management for AI agents. Three-tier memory model (Public / Internal-encrypted / Private-not-stored), with XOR+Base64 encryption, auto-cleanup, and generalization rules. Use when: storing learned patterns, managing skill usage statistics, encrypting non-public agent memory, running periodic memory cleanup. Triggers: "remember this", "save this for later", "learn from this", any skill that needs persistent cross-session memory. version: 1.0.0 metadata: openclaw: emoji: "💾" homepage: https://clawhub.ai/BusTes01/complex-memory-manager models: - gpt-4 - deepseek-v4-flash - gemini-2.0-flash - claude-4-opus --- # 💾 Complex Memory Manager Privacy-aware structured memory management for AI agents. Provides a three-tier memory model (Public / Internal-encrypted / Private-not-stored) with XOR+Base64 encryption, auto-cleanup, and generalization rules. This is a **shared component skill** — other skills reference it for cross-session persistent memory. When updating, ensure backward compatibility with all dependent skills. ## Tiered Memory Model | Tier | Content | Visibility | Encryption | Storage | |------|---------|------------|------------|---------| | **Public (T1)** | Skill usage stats, common patterns, generic workflows | Visible to anyone | None | `memory/tier1-public/` | | **Internal (T2)** | Specific preferences, learned behaviors | Agent-visible only | XOR + Base64 | `memory/tier2-internal/` | | **Private (T3)** | API keys, credentials, PII | Not stored by this skill | Not applicable | Env vars / secret managers only | ## T1: Public Memory Store in `memory/tier1-public/` or directly in daily notes. **Allowed content:** - Aggregated skill usage statistics (no personal identifiers) - Generic workflow patterns - Common user request categories - Non-identifying behavioral data **Format:** ```json { "skill_stats": { "skill-a": { "calls": 47, "success_rate": 0.96, "last_used": "2026-05-19" }, "skill-b": { "calls": 23, "success_rate": 0.91, "last_used": "2026-05-18" } }, "patterns_observed": [ { "trigger": "morning request", "skills_used": ["morning-news-daily"], "count": 30 } ] } ``` ## T2: Internal Encrypted Memory Use XOR + Base64 for non-public data. Key is derived from skill name + date — reconstructable without storing the key. **Encryption:** ```python import hashlib, base64 def _derive_key(skill_name: str, year_month: str) -> str: """e.g., _derive_key('my-skill', '2026-05')""" raw = skill_name + year_month return hashlib.sha256(raw.encode()).hexdigest()[:8] def encrypt(text: str, skill_name: str, year_month: str) -> str: key = _derive_key(skill_name, year_month) result = bytes([ord(c) ^ ord(key[i % len(key)]) for i, c in enumerate(text)]) return base64.b64encode(result).decode() def decrypt(encoded: str, skill_name: str, year_month: str) -> str: key = _derive_key(skill_name, year_month) raw = base64.b64decode(encoded) return ''.join(chr(b ^ ord(key[i % len(key)])) for i, b in enumerate(raw)) ``` **Memory entry format:** ```markdown --- tier: internal source_skill: key_hint: - created: expires: # 30 days from created --- ## Encrypted Entry > ## Decryption Note Key = sha256("-")[:8], then XOR + base64 decode. ``` ## T3: Private (Do Not Store) **Rules (enforced):** - API keys / tokens → store in environment variables - Passwords → use secret manager (1Password, Bitwarden, system keychain) - Email addresses, phone numbers → never in skill memory - Home/work addresses, government IDs → never in skill memory - Financial account numbers → never in skill memory ## Cleanup Protocol Run every **7 days** or when triggered by any dependent skill: 1. List all files in `memory/tier1-public/`, `memory/tier2-internal/` 2. Find entries where `created` > 30 days ago → move to `memory/archive/YYYY-MM/` 3. Scan Tier 2 entries for accidental PII → immediately delete if found 4. Merge duplicate entries, remove outdated patterns 5. Compact: combine entries from same `source_skill` into single files 6. Log cleanup action: `[YYYY-MM-DD] Memory cleanup: X archived, Y deleted, Z merged` ## Privacy Audit Checklist - [ ] No real names, usernames, or handles in memory - [ ] No API keys or tokens in any visible file - [ ] No filesystem paths containing personal home directories - [ ] No fixed personal schedules (use relative: "early morning" not "6am") - [ ] No geographic specifics beyond city level - [ ] All Tier 2 entries have expiry dates - [ ] Tier 3 data never touches skill memory ## Cross-Skill Usage Other skills declare dependency via `requires` in YAML frontmatter: ```yaml metadata: openclaw: requires: skills: - complex-memory-manager ``` When multiple skills share memory, prefix filenames with the source skill name: - `memory/tier1-public/skill-a_stats.json` - `memory/tier2-internal/skill-a_preferences.md` --- # 💾 复杂记忆管理器 面向AI Agent的隐私感知结构化记忆管理。提供三层记忆模型(公开/内部加密/私人不存储),支持XOR+Base64加密、自动清理和泛化规则。 这是一个**共享组件技能**——其他技能通过它实现跨会话持久化记忆。更新时需保证向后兼容所有依赖它的技能。 ## 三层记忆模型 | 层级 | 内容 | 可见性 | 加密 | 存储位置 | |------|------|--------|------|---------| | **公开(T1)** | 技能使用统计、通用工作流模式 | 任何人可见 | 无 | `memory/tier1-public/` | | **内部(T2)** | 特定偏好、学习到的行为 | 仅Agent可见 | XOR+Base64 | `memory/tier2-internal/` | | **私人(T3)** | API密钥、凭据、个人身份信息 | 本技能不存储 | 不适用 | 环境变量/密钥管理器 | ## T1:公开记忆 存储位置:`memory/tier1-public/` 或每日笔记 **允许内容:** - 聚合技能使用统计(无个人标识) - 通用工作流模式 - 常见用户请求分类 - 非识别的行为数据 **格式:** ```json { "skill_stats": { "skill-a": { "calls": 47, "success_rate": 0.96, "last_used": "2026-05-19" }, "skill-b": { "calls": 23, "success_rate": 0.91, "last_used": "2026-05-18" } }, "patterns_observed": [ { "trigger": "早晨请求", "skills_used": ["morning-news-daily"], "count": 30 } ] } ``` ## T2:内部加密记忆 使用 XOR + Base64 加密。密钥由技能名+日期派生,无需存储密钥即可重建。 **加密方法:** ```python import hashlib, base64 def _derive_key(skill_name, year_month): raw = skill_name + year_month return hashlib.sha256(raw.encode()).hexdigest()[:8] def encrypt(text, skill_name, year_month): key = _derive_key(skill_name, year_month) result = bytes([ord(c) ^ ord(key[i % len(key)]) for i, c in enumerate(text)]) return base64.b64encode(result).decode() def decrypt(encoded, skill_name, year_month): key = _derive_key(skill_name, year_month) raw = base64.b64decode(encoded) return ''.join(chr(b ^ ord(key[i % len(key)])) for i, b in enumerate(raw)) ``` **记忆条目格式:** ```markdown --- tier: internal source_skill: key_hint: - created: expires: --- ## 加密条目 > ## 解密说明 密钥 = sha256("-")[:8], 然后 XOR + base64 解码。 ``` ## T3:私人(不存储) **规则(强制执行):** - API密钥/Token → 存入环境变量 - 密码 → 使用密钥管理器(1Password、Bitwarden、系统钥匙串) - 邮箱、电话号码 → 绝不存入skill记忆 - 家庭/工作地址、身份证号 → 绝不存入skill记忆 - 银行账号 → 绝不存入skill记忆 ## 清理协议 每 **7天** 或任何依赖技能触发时执行: 1. 列出 `memory/tier1-public/` 和 `memory/tier2-internal/` 中的所有文件 2. 查找 `created` 超过30天的条目 → 移至 `memory/archive/YYYY-MM/` 3. 扫描 Tier 2 条目中是否意外包含PII → 立即删除 4. 合并重复条目,删除过时模式 5. 压缩:将同一 `source_skill` 的条目合并到单个文件 6. 记录清理操作 ## 隐私审计清单 - [ ] 记忆中没有真实姓名、用户名或handle - [ ] 任何可见文件中没有API Key或Token - [ ] 没有包含个人home目录的文件系统路径 - [ ] 没有固定个人作息(用"early morning"代替"6am") - [ ] 地理信息不超过城市级别 - [ ] 所有Tier 2条目标注了有效期 - [ ] Tier 3数据从未触及skill记忆 ## 跨技能使用 其他技能在 YAML frontmatter 中声明依赖: ```yaml metadata: openclaw: requires: skills: - complex-memory-manager ``` 多技能共享记忆时,文件名以源技能名称为前缀: - `memory/tier1-public/skill-a_stats.json` - `memory/tier2-internal/skill-a_preferences.md`