Penfield
PassAudited by ClawScan on May 10, 2026.
Overview
Penfield is a clearly disclosed persistent-memory skill, but users should understand that it can store and reuse context, preferences, files, and session state across future agent sessions.
Penfield appears purpose-aligned and not malicious based on the provided artifacts. Before installing, confirm where the Node plugin stores memories and files, who or what can restore saved contexts, and how you can review, correct, or delete retained information.
Findings (3)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
Information shared in one session may influence future sessions, including preferences, decisions, summaries, and other remembered context.
The skill intentionally stores and reuses memory across sessions and channels, which is useful for its purpose but can preserve sensitive or incorrect context if users or agents store it.
Persistent memory that compounds. Your agent remembers conversations, learns preferences, connects ideas, and picks up exactly where it left off—across sessions, days, and channels.
Use it only for information you are comfortable retaining, and check whether the installed plugin provides clear memory review, correction, and deletion controls.
A future or different agent may receive prior session context if the user or workflow restores a checkpoint.
The skill supports saved contexts that can be used for handoff to another agent. This is aligned with the memory purpose, but the artifact does not describe detailed identity or access boundaries for cross-agent reuse.
`penfield_save_context` | Checkpoint a session | Ending substantive work, preparing for handoff to another agent
Avoid saving secrets or private material in checkpoints unless you understand which agents can restore them and how access is controlled.
The installed package will determine how memories, artifacts, and contexts are actually stored and protected.
The reviewed artifact set contains only SKILL.md while the actual runtime behavior depends on an external Node package. That package install is expected for this plugin, but its implementation was not included for review.
node | package: openclaw-penfield
Install from a trusted registry source and review the package documentation or source, especially its storage location, retention controls, and update behavior.