Tools
DreamPolice
By OpenClaw plugin that supervises dream memory consolidations with an external verifier and a bounded correction loop.
Install
npm install openclaw-dream-policeConfiguration Example
{
"enabled": true,
"verifier": {
"provider": {
"baseUrl": "https://api.openai.com/v1",
"apiKeyEnv": "DREAM_POLICE_API_KEY",
"model": "gpt-5.4",
"timeoutMs": 30000
}
},
"retry": { "maxRounds": 2 },
"scope": {
"phases": ["deep"],
"minApplied": 1
},
"sensitivity": {
"tags": ["secret", "private", "pii"],
"pathPatterns": [],
"onSensitive": "redact"
},
"auditFile": "memory/DREAMS_POLICE.md",
"pauseFile": ".dream-police.paused",
"pollIntervalMs": 2000
}README
# DreamPolice
**An OpenClaw plugin that supervises memory consolidations.**
OpenClaw's dreaming feature consolidates short-term memory into durable `MEMORY.md`
entries during quiet hours. The consolidation decisions are made by the same
agent that writes them โ no independent verifier โ so hallucinated claims can
be silently promoted into long-term memory, which is sticky and hard to undo.
DreamPolice watches those promotions, asks an external verifier model to fact-check
them, and โ if the verifier objects โ re-runs the dream with a structured critique
injected as targeted feedback. It never silently reverts: if correction fails after
`retry.maxRounds`, the suspect promotion is flagged in `DREAMS_POLICE.md` for your
review.
## How it works
1. OpenClaw's memory-core runs a dream and appends a `memory.promotion.applied`
event to `memory/.dreams/events.jsonl`.
2. DreamPolice tails that journal, slices the promoted lines out of the memory
file, and sends them to a verifier model you configure (OpenAI-compatible).
3. If the verifier says `accepted`, the plugin logs and moves on.
4. If the verifier returns `needs_revision` with structured issues, DreamPolice
applies the specific suggestions (`remove` / `rewrite` / `annotate`) and then
re-verifies. Up to `retry.maxRounds` rounds.
5. If the verifier still objects after the final round, DreamPolice appends a
human-readable entry to `DREAMS_POLICE.md`. **It never silently reverts.**
```
โโโโโโโโโโโโโโโโโโโโโโโโ
โ OpenClaw dreams โ
โโโโโโโโโโโโฌโโโโโโโโโโโโ
โผ
memory/.dreams/events.jsonl
โ
โผ
โโโโโโโโโโโโโโโโโโโโโโโโ
โ JournalTailer โ
โโโโโโโโโโโโฌโโโโโโโโโโโโ
โผ
โโโโโโโโโโโโโโโโโโโโโโโโ
โ Privacy filter โ skip / redact / flag
โโโโโโโโโโโโฌโโโโโโโโโโโโ
โผ
โโโโโโโโโโโโโโโโโโโโโโโโ
โ Verifier (external) โ โโโโโ you configure this
โโโโโโโโโโโโฌโโโโโโโโโโโโ
โผ
โโโโโโโโโโโโโโโโโโโโโโโโ
โ Correction loop โ up to retry.maxRounds
โโโโฌโโโโโโโโโโโโโโโโฌโโโโ
โผ โผ
Memory file DREAMS_POLICE.md
corrected (flagged, never reverted)
```
## Install
```bash
npm install openclaw-dream-police
# or
pnpm add openclaw-dream-police
```
Then register it with OpenClaw by adding the package as an extension in your
OpenClaw configuration (see the OpenClaw docs on installing third-party plugins).
## Configuration
Add to your OpenClaw config at `plugins.entries.dream-police.config`:
```jsonc
{
"enabled": true,
"verifier": {
"provider": {
"baseUrl": "https://api.openai.com/v1",
"apiKeyEnv": "DREAM_POLICE_API_KEY",
"model": "gpt-5.4",
"timeoutMs": 30000
}
},
"retry": { "maxRounds": 2 },
"scope": {
"phases": ["deep"],
"minApplied": 1
},
"sensitivity": {
"tags": ["secret", "private", "pii"],
"pathPatterns": [],
"onSensitive": "redact"
},
"auditFile": "memory/DREAMS_POLICE.md",
"pauseFile": ".dream-police.paused",
"pollIntervalMs": 2000
}
```
The API key **never** lives in config โ set it in the environment variable named
by `apiKeyEnv`. The plugin uses an OpenAI-compatible `/v1/chat/completions`
endpoint, so you can point it at any OpenAI-API-compatible service: OpenAI,
Anthropic (via a proxy), local Ollama, LM Studio, OpenRouter, etc.
### Sensitivity modes
- **`redact`** (default): strips emails, phone numbers, and API-token-looking
strings from candidates before sending to the verifier.
- **`skip`**: candidates tagged `<!-- tag:secret -->` (or matching a
`sensitivity.pathPatterns` glob) are not sent to the verifier at all, and no
corrections are attempted for them.
- **`flag`**: sensitive candidates are not sent, but an entry is appended to
`DREAMS_POLICE.md` so you know a dream touched sensitive content.
### Verifier output schema
The verifier model must return JSON of this shape:
```ts
{
verdict: "accepted" | "needs_revision" | "unsalvageable",
issues: Array<{
claim: string,
location: { memoryPath: string, startLine: number, endLine: number },
reason: string,
severity: "info" | "warn" | "error",
suggestedAction:
| { kind: "remove" }
| { kind: "rewrite", replacement: string }
| { kind: "annotate", note: string },
}>,
rationale: string,
confidence: number, // [0, 1]
}
```
`rewrite` actions with `confidence < 0.6` are auto-downgraded to `annotate` so a
low-confidence verifier can't silently destroy legitimate memory.
## Emergency disable
Three escape hatches:
1. Set `plugins.entries.dream-police.config.enabled = false` (requires restart).
2. Drop a `.dream-police.paused` file in the workspace root (polled live).
3. Uninstall the plugin.
## Known limitations
- Verifier and corrector calls go out via raw `fetch`. There is no
plugin-facing model-invocation API in OpenClaw yet.
- The corrector writes memory files directly because OpenClaw's memory plugin
API doesn't expose a write seam. Edits are scoped to the exact line range the
promotion just wrote and use atomic temp-file + rename.
- Interception is post-hoc (we tail the memory events journal). A future
upstream PR to OpenClaw would add a pre-promotion hook so a verifier could
veto bad promotions before they land.
## Development
```bash
pnpm install
pnpm test # runs all tests including the HTTP-based integration smoke
pnpm typecheck
```
The test suite uses no external network โ the integration smoke test spins up a
localhost HTTP server to stand in for the verifier.
## License
MIT โ see [LICENSE](./LICENSE).
## Acknowledgments
Built against the [OpenClaw](https://github.com/openclaw/openclaw) plugin SDK.
This plugin is not affiliated with or endorsed by the OpenClaw project.
tools
Comments
Sign in to leave a comment