Dream
WarnAudited by ClawScan on May 10, 2026.
Overview
Dream is a coherent memory-management skill, but it can keep or restore things the user asked it to forget and includes a broad file-overwrite helper that is not fully scoped.
Install only if you are comfortable with an agent actively editing long-term memory and keeping a permanent local archive. Before enabling scheduled mode, review the vault location, decide whether permanent retention is acceptable, and consider modifying the helper so writes are path-limited and forgotten items can be truly deleted.
Findings (4)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
Information you ask the agent to forget may remain in a permanent archive and may later be brought back into the active memory context.
The skill documents that forgetting does not delete the permanent archive and that forgotten content can be automatically restored into active memory later.
`dream forget <描述>` ... `无需确认,直接执行` ... `ledger 中的记录不受 dream forget 影响,永久保留` ... `后续对话中若该内容再次出现,自动触发 re-emergence,重新写入 MEMORY.md`
Add explicit confirmation and a true delete option that removes matching data from MEMORY.md, daily memory files, ledger, indexes, and removed-entry tracking; disable re-emergence for user-forgotten items unless the user opts in.
If the command is misused by an agent or invoked with the wrong path, it could overwrite any user-writable file, not just Dream memory files.
The helper accepts a caller-provided target file and moves the temp file there without enforcing that the path is under the OpenClaw workspace or DREAM_VAULT_PATH.
`cmd_atomic_write() { ... local target="${1:-}" ... ensure_dir "$target" ... mv "$tmpfile" "$target" }`Restrict write targets with realpath allowlists, reject symlinks and path traversal, and only permit expected files such as MEMORY.md and files under the Dream vault.
Your memory files and archive may change overnight without a visible prompt or summary unless you manually inspect the logs.
The skill intentionally runs scheduled memory distillation silently, which is disclosed and purpose-aligned but changes persistent memory without notifying the user at the time.
`全程自动,静默执行(03:30 触发时不推送任何消息)`
Use the scheduled mode only if you want silent background maintenance; consider requiring a visible summary or approval before applying changes.
Installation may require more local setup than the registry summary suggests, including a shell helper and jq dependency.
The skill itself declares dependencies and configuration, while the registry metadata says there are no required binaries, env vars, or install specs.
`requires: bins: - jq - wc` ... `config: - DREAM_VAULT_PATH` ... `install: - kind: brew formula: jq`
Align the registry metadata with the skill requirements and provide a complete, pinned install specification.