Summary

• Problem: The ltm search CLI command uses parseInt(opts.limit) without a radix parameter and without NaN validation. Passing a non-numeric value (e.g. --limit abc) causes NaN to propagate directly into the LanceDB .limit() call, leading to unpredictable query behavior.
• Why it matters: Users who mistype or pass invalid --limit values get a confusing LanceDB error instead of a graceful fallback.
• What changed: Added radix parameter (10) and a Number.isFinite + positive-integer guard that falls back to the default of 5 (matching the commander default on line 507).
• What did NOT change (scope boundary): No other CLI commands or search logic modified. Only the limit parsing for ltm search.

Change Type (select all)

• Bug fix
• Feature
• Refactor required for the fix
• Docs
• Security hardening
• Chore/infra

Scope (select all touched areas)

• Gateway / orchestration
• Skills / tool execution
• Auth / tokens
• Memory / storage
• Integrations
• API / contracts
• UI / DX
• CI/CD / infra

Linked Issue/PR

• Related fix: use Number.parseInt instead of global parseInt for consistency #63326 (same parseInt → Number.parseInt pattern, but for src/ files — this PR covers extensions/memory-lancedb)
• This PR fixes a bug or regression

Root Cause (if applicable)

• Root cause: parseInt(opts.limit) was used without a radix parameter and without validating the parsed result. JavaScript's parseInt("abc") returns NaN, which then flows unchecked into db.search(vector, NaN, 0.3).
• Missing detection / guardrail: No input validation on the CLI option before passing to the database layer.
• Contributing context (if known): The established pattern in src/cli/cron-cli/register.cron-simple.ts:72-73 already uses Number.parseInt with radix and Number.isFinite guard — this extension predates that pattern.

Regression Test Plan (if applicable)

• Coverage level that should have caught this:
  • Unit test
  • Seam / integration test
  • End-to-end test
  • Existing coverage already sufficient
• Target test or file: extensions/memory-lancedb/index.test.ts
• Scenario the test should lock in: ltm search "query" --limit abc should use the default limit (5) instead of propagating NaN.
• Why this is the smallest reliable guardrail: The guard is a 2-line inline pattern; a unit test on the parsing logic would catch any future regression.
• If no new test is added, why not: The fix uses an identical, battle-tested pattern from src/cli/cron-cli/register.cron-simple.ts. The commander default ("5") ensures the happy path always provides a valid string; only explicit invalid user input triggers the guard.

User-visible / Behavior Changes

• openclaw ltm search "query" --limit <invalid> now silently falls back to the default limit of 5 instead of producing unpredictable LanceDB behavior.

Diagram (if applicable)

Before:
[user: --limit abc] -> parseInt("abc") -> NaN -> db.search(vector, NaN, 0.3) -> ❌ unpredictable

After:
[user: --limit abc] -> Number.parseInt("abc", 10) -> NaN -> !isFinite -> fallback 5 -> db.search(vector, 5, 0.3) -> ✅ correct

Security Impact (required)

• New permissions/capabilities? No
• Secrets/tokens handling changed? No
• New/changed network calls? No
• Command/tool execution surface changed? No
• Data access scope changed? No

Repro + Verification

Environment

• OS: macOS
• Runtime/container: Node.js 22+
• Model/provider: N/A (CLI command, no model involved)
• Integration/channel (if any): memory-lancedb extension
• Relevant config (redacted): Memory plugin with LanceDB backend configured

Steps

1. Configure memory-lancedb extension
2. Run openclaw ltm search "test query" --limit abc
3. Observe behavior

Expected

• Search returns up to 5 results (default limit)

Actual (before fix)

• NaN propagates to LanceDB .limit() call, causing unpredictable query behavior

Evidence

• Trace/log snippets

// Before: parseInt("abc") === NaN
// db.search(vector, NaN, 0.3) — LanceDB receives NaN as limit

// After: Number.parseInt("abc", 10) === NaN
// Number.isFinite(NaN) === false → fallback to 5
// db.search(vector, 5, 0.3) — LanceDB receives valid limit

Human Verification (required)

• Verified scenarios: Confirmed Number.parseInt("abc", 10) returns NaN, and guard correctly falls back to 5. Confirmed valid inputs ("1", "10", "100") parse correctly.
• Edge cases checked: Empty string, negative numbers ("-1" → fallback), zero ("0" → fallback), floats ("3.5" → truncated to 3, accepted).
• What you did not verify: Live LanceDB instance behavior with NaN limit (no local LanceDB setup).

Review Conversations

• I replied to or resolved every bot review conversation I addressed in this PR.
• I left unresolved only the conversations that still need reviewer or maintainer judgment.

Compatibility / Migration

• Backward compatible? Yes
• Config/env changes? No
• Migration needed? No

Risks and Mitigations

• Risk: Fallback to 5 when 0 is passed (users cannot request zero results).
  • Mitigation: Requesting zero results is not a meaningful use case; commander default is already "5".

AI-assisted: yes