Memory Layer
Operations

Security and privacy

Memory Layer can be local-first, but external embedding or LLM providers may receive text depending on your configuration.

Check before enabling integrations

  • Which database stores project memory?
  • Which LLM provider is configured?
  • Which embedding provider is active?
  • Is MCP HTTP local and token protected?
  • What does the watcher capture?
  • Are logs redacted before sharing?

Do not expose the MCP HTTP server to the public internet unless you have added an authentication and network control layer.

Verify

memory doctor
memory status --project <project-slug>
memory mcp status --project <project-slug>

Next

Read MCP security and Backups and restore.

Performance

Reason about retrieval latency, provider cost, graph extraction, and eval runtime.

Multi-project use

Use one backend with multiple project configs and scoped queries.

On this page

Security and privacyCheck before enabling integrationsVerifyNext