memory-dag-compactor
Pass
Audited by Gen Agent Trust Hub on Mar 21, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill performs purely local operations, reading from
MEMORY.mdand writing state to the~/.openclawdirectory. No network-enabled libraries (likerequestsorurllib) or system-level command execution utilities (likesubprocessoros.system) are used. - [SAFE]: Deserialization of state files is handled securely using
yaml.safe_load(), which prevents the execution of arbitrary Python objects during file loading. - [SAFE]: The summarization logic is deterministic and implemented via string manipulation and regular expressions in Python. It does not utilize an LLM for the compaction process itself, which eliminates risks related to prompt injection during the generation of the DAG nodes.
- [SAFE]: The skill's persistence via a
cronschedule is a standard feature of the platform for maintenance tasks and does not involve unauthorized modification of system startup scripts or user profiles.
Audit Metadata