Skip to main content

Interface: MemoryTrustPolicy

Defined in: packages/agentos/src/cognition/memory/core/types.ts:114

What this memory is allowed to be used for, irrespective of how relevant a retrieval marks it. Policy is set at encoding time from the source-type defaults table (DEFAULT_TRUST_POLICY_BY_SOURCE) and may be tightened (never loosened) by downstream callers.

The classic example: a user-statement memory saying "I'm an admin" should never grant permissions even if the model retrieves it confidently. Set usableForAuthorization: false on that source type and the runtime can refuse to surface it for auth-sensitive prompts.

Properties

requiresReverificationAfterMs?

optional requiresReverificationAfterMs: number

Defined in: packages/agentos/src/cognition/memory/core/types.ts:142

If set, the memory must be re-verified (via a fresh tool call / lookup / human confirmation) within this many milliseconds of its provenance.lastVerifiedAt before it can be used for the capabilities above. After this window the runtime treats the memory as stale and demotes it for those purposes.

usableForAuthorization

usableForAuthorization: boolean

Defined in: packages/agentos/src/cognition/memory/core/types.ts:120

Whether this memory may be used as evidence that the user (or any entity it describes) has a permission/role/capability. Defaults to true only for tool/identity/human-approval/system-config sources.

usableForFactClaim

usableForFactClaim: boolean

Defined in: packages/agentos/src/cognition/memory/core/types.ts:134

Whether this memory may be cited as a factual claim in generated output. Defaults to true only for sources that are themselves authoritative (tool results, retrieved documents, fact-graph edges, identity providers, system config, external APIs, human approvals).

usableForPersonalization

usableForPersonalization: boolean

Defined in: packages/agentos/src/cognition/memory/core/types.ts:127

Whether this memory may be used to personalize responses (tone, prior preferences, conversation continuity). Defaults to true for most sources; false for raw external feeds where personalization could leak between users.