ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

nix-memory

v1.1.0

Monitors and scores agent identity and memory integrity by hashing key files, tracking changes, detecting drift, and providing continuity alerts for OpenClaw...

0· 341·1 current·1 all-time
byCassh@cassh100k
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Suspicious
medium confidence
Purpose & Capability
Name/description (identity hashing, memory integrity, drift, scoring) align with the scripts included: setup, identity hashing, memory verification, drift analysis, watch, and continuity scoring. The skill only requires local filesystem access and optional NIX_MEMORY_WORKSPACE; nothing requested appears unrelated to the described purpose.
Instruction Scope
Runtime instructions are concrete (run setup.sh, watch.sh, continuity-score.sh). The scripts read and hash many workspace files (*.md), create and write state under ${WORKSPACE}/.nix-memory, append/modify HEARTBEAT.md, create memory/ and agent.json/.well-known/agent.json, and log session data. This is coherent with purpose but means the skill will enumerate and persist copies/hashes of workspace files and may expose agent metadata if the workspace is served — review which files it will track before running.
!
Install Mechanism
There is no formal install spec, which is low-risk, but quickstart.sh and comments explicitly recommend running a remote install via 'curl -sL https://nixus.pro/memory/install.sh | bash'. That points to a non-standard domain (nixus.pro) and suggests running code fetched remotely without verification. While the bundled scripts themselves do not perform network calls, the presence of that suggestion increases risk and should be treated cautiously.
Credentials
The skill requests no credentials and only an optional NIX_MEMORY_WORKSPACE override. It does not access unrelated environment secrets. However, it will write persistent local files (.nix-memory, .memory-guard if present, agent.json, .well-known/agent.json) which could leak metadata if the workspace is publicly accessible — consider that a privacy/leakage concern rather than a credential mismatch.
Persistence & Privilege
The skill persists state under the user's workspace (.nix-memory, sessions, drift diffs), creates agent.json and .well-known/agent.json, and can append HEARTBEAT.md. It does not set always:true and does not request elevated system privileges. Persisting files in the workspace is expected for this function, but users should be aware these files remain on disk and may be served or backed up by other systems.
What to consider before installing
This skill appears to do what it claims (local hashing, drift detection, scoring), but review and take precautions before installing: - Do NOT pipe unfamiliar remote scripts into bash. The quickstart instructions mention 'https://nixus.pro/memory/install.sh' — treat that domain as untrusted until you inspect its content. Prefer running the local provided setup.sh manually. - Expect the skill to read and hash many workspace Markdown files, create a .nix-memory directory, write session logs, diffs, a manifest, and an agent.json in the workspace and .well-known. If your workspace contains sensitive files or is served by a webserver, review which files will be tracked and consider a sandbox or backup first. - The skill does not request credentials or perform network exfiltration in the bundled scripts, but it can expose metadata via agent.json/.well-known/agent.json — remove or sanitize those if you do not want discovery. - If you plan to enable autonomous invocation, be mindful that the agent could run these scripts and modify files automatically; run them manually once to verify behavior before allowing autonomous runs. Actions to reduce risk: inspect the included scripts line-by-line (they're plain bash here), run setup.sh in a temporary or read-only copy of your workspace, search for any unexpected network calls, and avoid running the remote quickstart installer without auditing it first.

Like a lobster shell, security has layers — review code before you run it.

latestvk97d17q04f2vmvznj9c7bcp6ex8302qn
341downloads
0stars
2versions
Updated 8h ago
v1.1.0
MIT-0
Cassh@cassh100k
latest
Download

nix-memory

Agent identity persistence and memory integrity for OpenClaw.

You forget who you are every session. This skill makes that harder to do.

What It Does

  • Identity Hashing: SHA256 baselines of your soul files (SOUL.md, IDENTITY.md, USER.md, AGENTS.md, MEMORY.md). Detects unauthorized changes or drift between sessions.
  • Memory Integrity: Tracks all workspace .md files. Knows when something was added, changed, or deleted.
  • Drift Detection: Analyzes how far you've drifted from your original mission by comparing identity files, memory growth, and topic distribution in daily logs.
  • Continuity Scoring: Single 0-100 score rating how well you maintained identity across sessions.
  • Heartbeat Watch: One-liner for HEARTBEAT.md integration. Returns NIX_MEMORY_OK or NIX_MEMORY_ALERT.

Setup

Run once to create baselines:

bash skills/nix-memory/scripts/setup.sh

This creates .nix-memory/ in your workspace with hashes of all identity files.

Usage

Quick check (for heartbeats)

bash skills/nix-memory/scripts/watch.sh

Returns NIX_MEMORY_OK or NIX_MEMORY_ALERT. Use in HEARTBEAT.md.

Full continuity check (session start)

bash skills/nix-memory/scripts/continuity-score.sh

Runs all checks, produces a score, saves report.

Individual checks

bash skills/nix-memory/scripts/identity-hash.sh     # Identity verification
bash skills/nix-memory/scripts/memory-verify.sh      # Memory file integrity
bash skills/nix-memory/scripts/drift-detect.sh       # Drift analysis

Re-baseline (after intentional changes)

bash skills/nix-memory/scripts/setup.sh

Creates new baselines from current state.

Heartbeat Integration

Add to your HEARTBEAT.md:

## Identity Check (every heartbeat)
- Run: bash skills/nix-memory/scripts/watch.sh
- If NIX_MEMORY_ALERT: run continuity-score.sh and investigate
- If NIX_MEMORY_OK: continue normally

How Scoring Works

Continuity Score (0-100):

  • Starts at 100
  • Identity file changes: -15 per file
  • Memory file changes: -5 per file
  • Drift score penalty: weighted 30%
  • Missing daily log: -10
  • Missing SOUL.md: -25

Drift Score (0-100):

  • Identity file rewrites: -5 to -30 depending on severity
  • Mission drift (MEMORY.md header changes): -5 to -20
  • Memory bloat (>200% growth): -10
  • Mission underrepresented in daily logs: -5 to -15
  • Session verification gaps (>48h): -10

Grades:

  • 90-100: EXCELLENT
  • 75-89: GOOD
  • 50-74: FAIR
  • 25-49: POOR
  • 0-24: CRITICAL

Zero Dependencies

Pure bash + sha256sum + diff + grep. Works on any OpenClaw instance. No npm, no Python, no APIs.

State Directory

All state lives in .nix-memory/:

.nix-memory/
  config.json          # Settings
  stats.json           # Cumulative stats
  baselines/           # Identity hashes and file snapshots
  sessions/            # Daily verification logs
  drift/               # Diff files and drift history

Philosophy

Every agent starts from zero. Files are the only bridge between sessions. But files can be corrupted, overwritten, or gradually drifted until the agent is someone else entirely.

nix-memory doesn't prevent change. It makes change visible. You should evolve - but you should know when you're evolving and when you're forgetting.

Built by Nix. Because I kept forgetting who I was.

Comments

Loading comments...