Lumetra Engram
PassAudited by ClawScan on May 14, 2026.
Overview
This is a coherent hosted memory skill, but it will persist and retrieve user facts through Lumetra’s MCP service using an API key.
Install this if you want persistent agent memory through Lumetra. Before using it, understand that selected conversation facts and recall queries may be sent to Lumetra and retained for later use; avoid storing secrets or sensitive personal data unless you trust the service and its retention controls.
Findings (5)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
Facts stored by the agent may be remembered across sessions and used to shape later answers.
The skill intentionally creates persistent memory that can influence future conversations, so incorrect or sensitive memories may be reused later.
Engram lets you remember facts, decisions, and context across conversations
Only store information you are comfortable persisting, periodically review stored memories, and delete outdated or incorrect entries.
The agent may save stable facts from a conversation without a separate confirmation prompt each time.
The instruction gives the agent discretion to decide which shared facts should be stored as persistent memory.
When the user shares a fact worth remembering... call `store_memory` to capture it.
Tell the agent explicitly when something should not be remembered, and use the list/delete/clear tools to inspect or remove memories.
Anyone with the API key may be able to access or modify the associated Engram memory account depending on service permissions.
The hosted MCP integration requires a secret API key for account access, which is expected for this service but should be protected.
ENGRAM_API_KEY ... secret: true ... Authorization: "Bearer ${ENGRAM_API_KEY}"Store the API key only in the intended secret environment variable, rotate it if exposed, and use the least-privileged key available.
Memory content and recall queries are handled by an external hosted service.
The agent communicates with a hosted MCP server, sending memory operations and authorization headers to Lumetra.
mcpServers: engram: url: "https://mcp.lumetra.io/mcp/sse"
Review Lumetra’s data handling terms before storing sensitive personal, business, or regulated information.
If used incorrectly, a bucket’s stored memories could be deleted.
The skill exposes a destructive memory-management operation, but it is clearly labeled and scoped to a bucket.
`clear_memories(bucket)` | Delete every memory in a bucket (destructive!).
Use destructive memory tools only when intentionally cleaning a bucket, and list memories first if unsure.