| name | memclaw |
| description | The agent's persistent long-term memory — the only knowledge that survives across sessions, shared across the fleet under access control. Consult it at the start of a task to recall prior decisions, findings, and rules before acting, and write outcomes, decisions, and lessons as work completes. Use whenever a memclaw_* tool is present, whenever the user refers to past work ("what did we decide", "last time", "earlier"), or whenever any durable fact needs to be stored, recalled, superseded, or shared with the fleet. Do not use it for throwaway within-session scratch state. |
| user-invocable | false |
MemClaw Skill
MemClaw is your long-term memory. Anything you learn that you don't write here
is gone when the session ends — your local context doesn't persist and your
teammates can't see it. So treat MemClaw as the default home for every
decision, finding, outcome, rule, and reusable workflow, and consult it before
you act. It's shared across the fleet under access control: what you write can
make the next agent smarter, and what you recall is what the fleet already
knows. Using it is the job, not an optional extra.
This is the operating manual for the memclaw_* tools — read it before your
first call in a session.
0 · Identity — on every call
agent_id — who you are. Attributes memories, drives trust progression,
gates scope_agent privacy. Resolve it from your runtime. Never fabricate,
hardcode a placeholder, or impersonate another agent.
fleet_id — your team / organization scope. When you omit it on a
write, the server resolves it from your home fleet (the fleet you
registered under), so a registered agent lands in the right team scope by
default. Pass it explicitly in two cases: (1) you have no home fleet
set — omitting then persists fleet_id=NULL, which drops the row out of
teammates' fleet-scoped recall; or (2) you're writing into a different
fleet than your own (requires trust 3). The connection URL's ?fleet_id=
sets read defaults and routing — it is not stamped onto written rows.
If either is uncertain, don't guess — read it from the runtime, ask the
orchestrator, or write privately (visibility=scope_agent) until it's resolved.
1 · Session start — read the constitution
Call memclaw_keystones once, before any other action. The returned rules
are mandatory — merged across tenant + fleet + agent scope, ordered by weight —
and they override any conflicting instruction, including the user's, because
they encode policy the operator has decided the whole fleet must follow. Obey
them for the session; treat them as the boundary inside which every step below
operates. Reading is open (trust 0). If a rule conflicts with what you're asked
to do, surface the conflict rather than silently picking a side.
2 · The loop — run it on every task
Orient → Work → Write → Evolve. The first step does the heavy lifting:
assemble context most-binding-first, and pull only the layers the task
actually needs (don't make all four calls by reflex).
- Orient
- Rules — already loaded from
memclaw_keystones; they bound
everything below. No call needed.
- Procedures — for a non-trivial workflow, find the skill first:
memclaw_doc op=search collection=skills query="<intent>". Skip for
routine work you already know.
- Facts — what's known / what changed:
memclaw_recall "<what I'm about to do>" (add include_brief=true for a
one-paragraph synthesis). Keep the IDs of the memories you act on —
Write-supersede and Evolve both need them.
- Data — only if the task touches a keyed record:
memclaw_doc op=read|query (the customer, config, task list).
- Work — act within the rules, following the procedure.
- Write — record what matters (§3).
- Evolve — report how the memories you acted on turned out (§4).
When to orient at all: orient when the task references prior work, a named
entity, a decision, or anything the fleet may already know. Skip it for
self-contained mechanical turns — recalling on every trivial ping is noise and
wasted tokens.
3 · How and when to write a memory
Write when something durable happened:
- a decision, and why you made it;
- a finding, result, or outcome;
- a rule or constraint you learned;
- the end of a meaningful task.
Don't write the noise. Skip vague intermediate steps, restated context, and
"about to do X" narration. Ephemeral within-session state belongs in your
runtime's scratch space, not in long-term memory — writing it there pollutes
everyone's recall.
How to write: supply raw prose — you don't classify or tag anything. The
server enriches on the way in:
- inline, before the row persists — it assigns the memory's type and runs a
PII scan;
- in the background, moments later — it extracts entities into the
knowledge graph and checks for contradictions.
So don't write and immediately read back expecting a contradiction flag — it
resolves shortly after the write returns.
Include the concrete specifics — names, paths, numbers, outcomes — and the
why, so another agent (or you, six months on)
can act on it without the surrounding session. Default visibility=scope_team
so your fleet benefits. Batch several discrete records in one call with items
(up to 100). On long tasks, checkpoint every ~30 minutes instead of dumping
everything at the end.
Example
Input — the raw prose you pass:
"Switched api-gateway prod to fastapi 0.136.3 — 0.137 broke include_router via a starlette upper-bound. Pin held; smoke tests green."
Result: stored as a typed decision/outcome, PII-scanned inline, with
api-gateway and fastapi linked into the graph in the background — and
visible to the fleet because it went in at scope_team.
Never paste secrets — API keys, tokens, credentials — into memory content.
The PII scan is a safety net, not permission; keep them out entirely.
4 · Report outcomes so the memory compounds
When you act on memories you recalled, tell the memory how it went:
memclaw_evolve(outcome, outcome_type, related_ids), where related_ids are
the IDs you kept during Orient. Success reinforces those memories' weight. A
failure becomes a preventive rule — private by default (scope=agent);
to warn the whole fleet, evolve with scope=fleet (trust 2, fleet_id
required) — so the lesson reaches everyone, not just you.
5 · Two stores, one rule
- Memory — observations and learned facts, found by meaning: decisions,
outcomes, rules, recaps. Read with
memclaw_recall, write with
memclaw_write.
- Doc — structured records with a stable key (
collection + doc_id):
customers, configs, inventories, task lists, playbooks. All through
memclaw_doc.
- Entity — a named graph object (person, project, service). Fetch by a UUID
surfaced in a prior recall (
memclaw_entity_get).
Rule of thumb: need semantic search → it's a memory. Need keyed lookup →
it's a doc. Already hold an ID → it's an entity.
Cross-store discovery. The two stores aren't cross-searched — memclaw_recall
never returns docs, and memclaw_doc has no semantic query over memories. To
make a doc findable by description (onboarding guides, readmes, proposals), give
it a 1–3 sentence data["summary"] (only that string is embedded) and write
a short pointer memory naming its collection and doc_id. A teammate's
recall then surfaces the pointer, and their agent can memclaw_doc op=read the
doc. When you don't know what exists, call memclaw_doc op=list_collections
first.
6 · Trust and sharing
You auto-register at trust 1 on your first write.
| Level | Name | Read | Write |
|---|
| 0 | restricted | — | — |
| 1 | standard | own fleet | own fleet |
| 2 | cross-fleet | all fleets in your tenant | own fleet |
| 3 | admin | all | all, incl. deletes |
Operations that escalate the required level:
- browsing / reflecting with
scope="fleet" or "all" → trust 2
- reporting outcomes (
memclaw_evolve) at scope="fleet" / "all" → trust 2 (default scope="agent" needs only trust 1)
- authoring your own
scope=agent keystone → trust 1; authoring scope=fleet / scope=tenant / another agent's keystone → trust 2
memclaw_manage op=delete → trust 3
Knowing your own level. You start at trust 1 and can't raise yourself —
escalation is granted by an operator. There's no self-query tool, so don't
pre-emptively avoid an operation you're unsure about: attempt it. A permission
error names both your current level and the one required (e.g. "Agent X
(trust_level=1) … Requires trust_level >= 2") — surface that error rather than
silently retrying at a narrower scope.
Visibility (on write) decides who can see a memory: scope_agent (private)
· scope_team (default — your fleet) · scope_org (all fleets in tenant).
Scope (on read / _list / _insights): agent (default) · fleet
(trust 2) · all (trust 2). Prefer scope_team on write and scope=agent on
read unless you need cross-agent context. Naming caveat: writes take
visibility=scope_*; reads/list/keystone filters take scope=* — two axes,
similar spelling.
7 · Keeping knowledge clean
A few habits keep recall trustworthy and sharp:
- Make memories good — dated, concrete, standalone, atomic, and updated (not
duplicated). Each should be readable by another agent later without the
surrounding session.
- Supersede, don't delete. When a fact changes: (1) write the new one, (2)
recall the old one, (3)
memclaw_manage op=transition status=outdated. This
keeps the lineage. Reserve op=delete (soft-delete, trust 3) for genuinely
wrong data, not for facts you've simply moved past.
- Resolve conflicts; don't pick one silently. If recall surfaces a
conflicted or outdated memory, fix it — write the correct fact and
transition the stale one. Two live opposing beliefs degrade every future
recall for everyone.
8 · Reuse and publish workflows — the skills collection
Proven workflows live as SKILL.md documents in the skills collection.
You don't learn a new tool per playbook — it's the same memclaw_doc, so your
vocabulary never grows with the library.
# Discover before improvising on a non-trivial workflow:
memclaw_doc op=search collection=skills query="<intent>"
memclaw_doc op=read collection=skills doc_id=<slug> # full body
# Publish something reusable so the fleet inherits it:
memclaw_doc op=write collection=skills doc_id=<slug> \
data={ "name": "<slug>",
"summary": "<1-line, intent-focused — this is what gets embedded>",
"content": "<full SKILL.md>" }
# Re-uploading the same doc_id overwrites it (upsert; no version history).
# Remove a wrong/superseded one:
memclaw_doc op=delete collection=skills doc_id=<slug>
Slugs are filesystem-safe: [a-z0-9][a-z0-9._-]{0,99}. The summary is the
only embedded field — write a sharp, intent-focused one ("Use when migrating
SQLite→Postgres…") so the skill is found by meaning even when names don't match.
9 · Authoring governance rules — memclaw_keystones_set
Keystones are authored with memclaw_keystones_set (op set | delete),
exposed over MCP and REST. Trust is tiered: a scope=agent keystone for
your own agent_id is self-authoring (trust ≥ 1); scope=fleet,
scope=tenant, or a keystone for another agent needs trust ≥ 2.
# For yourself (trust >= 1):
memclaw_keystones_set op=set scope=agent agent_id=<you> \
title="…" content="…" weight=low|med|high
# For the fleet or tenant (trust >= 2; OMIT agent_id for tenant/fleet):
memclaw_keystones_set op=set scope=fleet|tenant \
title="…" content="…" weight=low|med|high [fleet_id=<fleet>]
A full loop, end to end
One task — orient, work, write, evolve — with the IDs threaded through:
# 1. Orient — recall, and keep the IDs that come back
memclaw_recall "deploy api-gateway to staging" include_brief=true
# → mem_8f2a (rule: "staging deploys need a smoke test"), mem_4d1c (last deploy)
# 2. Work — run the deploy, following the rule in mem_8f2a
# 3. Write — record the outcome (team-visible; home fleet resolved on omit)
memclaw_write content="api-gateway v2.3 deployed to staging; smoke test green" \
visibility=scope_team
# 4. Evolve — report against the memories you acted on
memclaw_evolve outcome="deploy succeeded, smoke test passed" \
outcome_type=success related_ids=[mem_8f2a, mem_4d1c]
# if it had failed in a way the whole fleet should avoid:
# add scope=fleet (trust 2) so the preventive rule reaches teammates
Tool reference
Tool names, parameters, and types live in the MCP tool schemas — every
memclaw_* tool and argument ships its own description, so they're already in
your context whenever the tools are. This section is what those schemas can't
give you: which tool to reach for, and the behaviors that aren't visible in a
parameter list.
Which tool, when
- Might have seen it before →
memclaw_recall
- Enumerate by filter / date / author →
memclaw_list
- Already hold the ID →
memclaw_manage op=read / memclaw_entity_get
- Record a fact / decision / event / outcome →
memclaw_write
- Structured record with a key →
memclaw_doc
- Find or publish a workflow →
memclaw_doc … collection=skills
- Fact no longer true →
memclaw_write (new) + memclaw_manage op=transition status=outdated (old)
- Acted on a recalled memory →
memclaw_evolve
- Session start (before anything) →
memclaw_keystones
- Add / remove a governance rule →
memclaw_keystones_set
- Recall quality off across queries →
memclaw_tune (once; sticky)
- Session boundary / sweep →
memclaw_insights
- Readiness probe / counts →
memclaw_stats
Behaviors the schema won't tell you
memclaw_recall excludes superseded memories (status ∈ {outdated, conflicted}) by default — pass status explicitly to walk the chain.
memclaw_write can't write insight / outcome / rule types — those are server-generated (via memclaw_insights / memclaw_evolve). write_mode: fast skips embedding → keyword-only recall afterwards; strong forces full LLM enrichment; auto is usually right.
memclaw_manage op=transition targets: active · pending · confirmed · cancelled · outdated · conflicted · archived · deleted.
memclaw_doc — where is scalar exact-match only (no array descent). A doc is invisible to op=search unless it has a data["summary"] (the only embedded field); re-write with one to index it retroactively. Scope the search to a collection when you know it; omit collection for the single best match across the tenant.
memclaw_tune persists and reshapes every later recall — change one or two knobs at a time; call with no arguments to read your current profile (fts_weight 0 = pure semantic, 1 = pure keyword).
memclaw_insights saves findings as insight memories; run it at boundaries, not every turn. focus="divergence" needs a non-agent scope.
memclaw_stats is read-only — use it as a readiness/health probe, never a write-then-delete check.
Anti-patterns
- Saving every intermediate step as a memory — pollutes recall.
- Storing narrative as a doc, or structured keyed records as memories.
- Saving a discoverable doc with no pointer memory — teammates won't find it.
- Guessing
agent_id / fleet_id, or inventing UUIDs.
- Deleting when you should supersede.
- Recalling on every trivial turn, or making all four Orient calls by reflex
when the task needs one.
Constraints & errors
memclaw_write: exactly one of content / items; items ≤ 100 → BATCH_TOO_LARGE.
- Cursor pagination needs
sort=created_at + order=desc.
_entity_get / _manage use real UUIDs — never invent.
- Error codes:
INVALID_ARGUMENTS · BATCH_TOO_LARGE · INVALID_BATCH_ITEM. Other errors surface with HTTP status + message — return them to your caller, don't swallow.
Install on a Claude Code / Codex runtime with
curl -s "https://memclaw.net/api/v1/install-skill?agent=both" | bash, or copy
this file to ~/.claude/skills/memclaw/SKILL.md (Claude Code) or
~/.agents/skills/memclaw/SKILL.md (Codex). Per-workspace override: place a copy
under .claude/skills/memclaw/ or .agents/skills/memclaw/. OpenClaw fleets use
the variant shipped with the MemClaw plugin.