Skip to content

Agent and User Memory

Memory keeps files available across sessions. Everruns provides three ownership scopes so shared organization knowledge, an agent’s learned context, and a user’s preferences do not have to share the same access boundary.

ScopeLifetime and ownerHow it enters a sessionAccess
OrganizationA named store managed within one organizationSelect it in the memory capability and choose a path under /workspaceRead-only by default; read-write must be selected explicitly
AgentOne server-managed store per agentAutomatically mounted for sessions hosted by that agent at /memory/agentRead-write in the hosted session
UserOne server-managed store per userAutomatically mounted in the owning user’s private, default session workspace at /memory/userRead-write for the owner and the agent working in that session

Organization memories are appropriate for shared references such as runbooks or product documentation. Agent memory follows one host agent across its sessions. User memory follows one user so preferences and personal context can persist across their sessions.

User memory is private by default. Only the session owner may access /memory/user through user-facing session file APIs. Other users cannot read or mutate the subtree, and file searches redact matches from it. Internal runtime access lets the agent working for the owner read and update that memory.

User memory is not mounted into caller-attached shared workspaces. Everruns waits to expose it there until mounts can be participant-local instead of visible to the entire workspace.

Agent memory is separate from user memory. It is shared by sessions hosted by the same agent, so do not use /memory/agent for user-private data. A guest agent’s private memory is not merged into a shared session’s workspace-wide /memory/agent path.

When a session starts, Everruns lazily creates any missing scoped stores and mounts their current files:

  • /memory/agent contains the host agent’s persistent files.
  • /memory/user contains the session owner’s persistent files when the session uses the owner’s private default workspace.

Both automatic mounts are read-write. The regular file tools and Workspace UI traverse them alongside session files, and writes persist to the scoped memory for later sessions.

The /memory/* namespace is reserved. You cannot use it for caller-supplied initial files or for mounts configured through the public memory capability.

Organization memories are created and managed through the Memory UI and /v1/memories API. Add the memory capability to select an active organization memory, its mount path, and its access mode.

  • Omitted access mode defaults to readonly.
  • A readwrite mount writes through to the durable organization memory.
  • Source-backed GitHub or Git memories are always read-only.
  • Agent- and user-scoped memories are server-managed and cannot be selected through memory.mounts.

See Memory model for the relationship between durable Memory and a session Workspace, or the API reference for current organization-memory schemas.