npm - @contextableai/openclaw-memory-rebac - Versions diffs - 0.3.6 → 0.3.8 - Mend

@contextableai/openclaw-memory-rebac 0.3.6 → 0.3.8

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (6) hide show

package/dist/cli.js +3 -3
package/dist/index.d.ts +6 -0
package/dist/index.js +27 -3
package/docker/graphiti/Dockerfile +4 -2
package/docker/graphiti/startup.py +25 -0
package/package.json +1 -1

package/dist/cli.js CHANGED Viewed

@@ -347,9 +347,9 @@ export function registerCommands(cmd, ctx) {
                                     .map((b) => b.text)
                                     .join("\n");
                             }
-                            if (text && text.length >= 5 &&
-                                !text.includes("<relevant-memories>") &&
-                                !text.includes("<memory-tools>")) {
+                            text = text.replace(/<relevant-memories>[\s\S]*?<\/relevant-memories>/g, "").trim();
+                            text = text.replace(/<memory-tools>[\s\S]*?<\/memory-tools>/g, "").trim();
+                            if (text && text.length >= 5) {
                                 const roleLabel = role === "user" ? "User" : "Assistant";
                                 conversationLines.push(`${roleLabel}: ${text}`);
                             }

package/dist/index.d.ts CHANGED Viewed

@@ -16,6 +16,12 @@
  * falling back to config-level subjectType/subjectId when agentId is absent.
  */
 import type { OpenClawPluginApi } from "openclaw/plugin-sdk";
+/**
+ * Strip OpenClaw envelope metadata from message text before Graphiti ingestion.
+ * Removes channel headers, sender/message-id meta lines, and memory injection
+ * blocks that would pollute entity extraction.
+ */
+export declare function stripEnvelopeMetadata(text: string): string;
 declare const rebacMemoryPlugin: {
     id: string;
     name: string;

package/dist/index.js CHANGED Viewed

@@ -55,6 +55,30 @@ function isSessionAllowed(sessionKey, filter) {
     return true;
 }
 // ============================================================================
+// Content sanitization
+// ============================================================================
+/**
+ * Strip OpenClaw envelope metadata from message text before Graphiti ingestion.
+ * Removes channel headers, sender/message-id meta lines, and memory injection
+ * blocks that would pollute entity extraction.
+ */
+export function stripEnvelopeMetadata(text) {
+    let result = text;
+    // Strip envelope header: [ChannelName ...metadata...] at start of line
+    // Matches: [Telegram Dev Chat +5m 2025-01-02T03:04Z] body
+    result = result.replace(/^\[[A-Z][^\]\n]*\]\s*/gm, "");
+    // Strip [from: SenderLabel] trailer lines
+    result = result.replace(/^\[from:\s*[^\]]*\]\s*$/gm, "");
+    // Strip [message_id: ...] hint lines
+    result = result.replace(/^\[message_id:\s*[^\]]*\]\s*$/gm, "");
+    // Strip memory injection blocks
+    result = result.replace(/<relevant-memories>[\s\S]*?<\/relevant-memories>/g, "");
+    result = result.replace(/<memory-tools>[\s\S]*?<\/memory-tools>/g, "");
+    // Collapse excess blank lines and trim
+    result = result.replace(/\n{3,}/g, "\n\n").trim();
+    return result;
+}
+// ============================================================================
 // Plugin Definition
 // ============================================================================
 const rebacMemoryPlugin = {
@@ -566,10 +590,10 @@ const rebacMemoryPlugin = {
                             }
                             text = textParts.join("\n");
                         }
+                        // Strip envelope metadata and injected blocks — keep the user's actual content
+                        text = stripEnvelopeMetadata(text);
                         if (!text || text.length < 5)
                             continue;
-                        if (text.includes("<relevant-memories>"))
-                            continue;
                         const roleLabel = role === "user" ? "User" : "Assistant";
                         conversationLines.unshift(`${roleLabel}: ${text}`);
                         messageCount++;
@@ -659,7 +683,7 @@ const rebacMemoryPlugin = {
                             }
                             return "";
                         };
-                        const userMsg = extractText(lastUserMsg);
+                        const userMsg = stripEnvelopeMetadata(extractText(lastUserMsg));
                         const assistantMsg = extractText(lastAssistMsg);
                         if (userMsg && assistantMsg) {
                             backend.enrichSession({

package/docker/graphiti/Dockerfile CHANGED Viewed

@@ -6,8 +6,8 @@
 #   1. Install sentence-transformers for BGE reranker
 #   2. Overlay per-component config + startup to wire separate clients
 #
-# UPGRADE AUDIT (vs upstream getzep/graphiti v0.28.2, audited 2026-03-21):
-#   Overlay patches in startup.py — 5 of 6 still needed:
+# UPGRADE AUDIT (vs upstream getzep/graphiti v0.28.2, audited 2026-03-24):
+#   Overlay patches in startup.py — 6 of 7 still needed:
 #   [NEEDED]  AsyncWorker crash-on-error recovery      (startup.py:109-126)
 #   [NEEDED]  Neo4j nested attribute sanitization       (startup.py:128-250)
 #   [SAFE]    None-index extract_edges fix              (startup.py:252-298)
@@ -15,6 +15,8 @@
 #   [NEEDED]  IS_DUPLICATE_OF edge filtering            (startup.py:152-169,216-227,310-318)
 #   [NEEDED]  Self-referential edge filtering           (startup.py:228-239)
 #   [NEEDED]  Singleton client / per-request fix        (startup.py:38-87)
+#   [NEEDED]  resolve_extracted_edge IndexError guard   (startup.py:325-349)
+#             — fixed upstream v0.28.2+; no Docker image published beyond 0.22.0
 ###############################################################################
 FROM zepai/graphiti:0.22.0

package/docker/graphiti/startup.py CHANGED Viewed

@@ -322,6 +322,31 @@ def patch():
     # Patch the local binding in graphiti.py
     graphiti_mod.extract_edges = safe_extract_edges
+    # -- Guard resolve_extracted_edge against IndexError from out-of-bounds
+    # contradicted_facts indices (issue #22) --
+    # The LLM sometimes returns fact indices that exceed the existing_edges list
+    # length, crashing the list comprehension. Upstream v0.28.2+ adds bounds
+    # checking; this patch provides equivalent safety for pinned v0.22.0.
+    original_resolve_extracted_edge = edge_ops_mod.resolve_extracted_edge
+    async def safe_resolve_extracted_edge(*args, **kwargs):
+        try:
+            return await original_resolve_extracted_edge(*args, **kwargs)
+        except IndexError as e:
+            logger.warning(
+                "resolve_extracted_edge: IndexError caught (out-of-bounds "
+                "contradicted_facts index): %s — returning edge as-is with "
+                "no invalidations",
+                e,
+            )
+            # args[1] is extracted_edge per the function signature
+            extracted_edge = args[1] if len(args) > 1 else kwargs.get("extracted_edge")
+            if extracted_edge is None:
+                raise
+            return (extracted_edge, [], [])
+    edge_ops_mod.resolve_extracted_edge = safe_resolve_extracted_edge
     return app

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@contextableai/openclaw-memory-rebac",
-  "version": "0.3.6",
+  "version": "0.3.8",
   "description": "OpenClaw two-layer memory plugin: SpiceDB ReBAC authorization + Graphiti knowledge graph",
   "type": "module",
   "license": "MIT",