エージェントのメモリ問題：「無制御な記憶肥大化」と「誤記憶の伝播」を深掘り

Agents Are Stuck in a Loop. Memory Growth and Propagation is why ! 15 8 63 26K Agents are in an unapologetic loop. They somehow never have the right memory and the bandwidth. You give them a long task, they hallucinate something mid way, store it, retrieve it later, and now that hallucination is load bearing. That's not a model problem. That's a memory problem. These 2 problems are the main bottlenecks when it comes to agent memory at scale: Uncontrolled Memory Growth: memory continues piling up without intelligent eviction, causing the entire system to choke because of too much history. False Memory Propagation: after storing one single false fact, this piece of information will repeatedly be retrieved and reinforced, and before you know it, the agent ends up being absolutely certain about anything and everything. Lets discuss both of these problems in detail with simple intuitions, as well as a list of other reasons why this keeps happening. Memory in Agents: A Quick Preview When people say agent memory they usually mean one of three things. Firstly, there’s in context memory – the prompt window. Secondly, there’s external memory, e.g., a vector database, an offloaded file generated by the agent itself. Thirdly, there’s parametric memory – memories acquired via the learning process and thus cannot be updated while the agent runs. Production agents today rely primarily on the first two types, having a window of rolling context along with a retrieval store for the older information. This sounds reasonable until you realize neither system has good answers for what to forget, what to trust, or what to do when something wrong gets stored. The MemGPT paper is one of the few serious attempts at thinking about this as a real systems problem. They treat the LLM as a CPU and memory tiers as explicit architectural components. Worth reading if you haven't. The core insight is that you need deliberate memory management, not just a naive one. Uncontrolled Memory Growth (UMG) This is how most agent pipelines work in reality. Every action, every tool output, every intermediate idea ends up stored in the memory bank. Nothing is ever forgotten. The logic is that the more context there is, the better. No way !!!! It leads to excessive noise, slows down retrieval, and ultimately leads to retrieving obsolete information in place of relevant new data. python #This is what naive memory accumulation looks like #No scoring, no eviction, no expiry. Just growth. memory_store = [] def store_memory(event): memory_store.append({ "content": event, "timestamp": time.time() # no score, no TTL, no relevance tag }) #10,000 interactions later, retrieval is slow and half the memories are stale or wrong Vectors do not have expiry. Embeddings keep on accumulating infinitely, while older embeddings get further away from being relevant. Retrieval time will increase linearly with the size of the vector store, particularly when performing long-running multiple-step agent workloads. Outdated information does not simply lie dormant. Instead, it comes to light through query embeddings that inadvertently retrieve stale information, corrupting present-day inference processes. There is no intrinsic notion of this information is now outdated in many information retrieval systems. Intuition: It often happens with us that we start making notes from the very first lecture in clg, a lot of those notes are rough, irrelevant, sometimes from different course too in the same notebook. Later on during exams, when we search for the right note, we struggle finding it, this is a classical example of uncontrolled memory in agents, the context starts to rot and finding appropriate answers from the context pool becomes difficult. False Memory Propagation (FMP) The FMP approach is more sophisticated and actually more frightening. First, there is one piece of information that is simply false. Perhaps the machine imagined some result from a tool call operation. Perhaps a user entered erroneous input. Perhaps the API provided bad data. For whatever reason, this false fact is recorded in memory. On the next recall, it comes out. It is used to reason about other things. The entire process is saved in memory. python #Agent retrieves memory and trusts it blindly def answer_with_memory(query, memory_store): relevant = retrieve_top_k(query, memory_store, k=3) #No validation. No confidence check. context = "\n".join([m["content"] for m in relevant]) response = llm.complete(f"Context: {context}\nQuestion: {query}") memory_store.append({"content": response}) #stores the output too return response The Chain of Thought paper shows that reasoning chains dramatically improve accuracy. But there's a flip side nobody talks about. If the initial stage of the process chain was incorrectly formed and this stage turns out to be a part of memory, all subsequent processes will inevitably include the mistake. CoT acts as a power magnifier both for right and for wrong logic. It is not failure in appearance for FMP. The agent is certain, consistent, and totally wrong. The more time the agent spends executing, the more ingrained the false memory becomes in the ranking of recall. Standard measurement tools cannot detect this as they test only final results and not internal states. Intuition: Now, for me there is a very interesting intuition for this and we all have experienced this. Sometimes we write an exam and we copy some formula from someone else, or we do a project and someone does a certain calculation somewhere. Without confirming we move on and and eventually now everyone is using the wrong formula or calculated value. This is what false memory propagation in agents is, one wrong context or memory and it all scrambles. Why RAG Makes This Worse, Not Better Everyone falls back on RAG for memory. Of course, it's simple and elegant in concept. Find relevant documents, ground the generation, avoid hallucinations. It's perfect for cases where your knowledge base is carefully curated and static, like an internal corporate wiki or a set of legal documents. The issue lies in the fact that agents write into their retrieval databases. This is the fundamental flaw with the approach. Instead of sourcing information from a separate and pure data set, your retriever is now reading from a database that your agent has been writing to, possibly containing mistakes from past queries. Ground truth is an assumption in RAG that the retrieval corpus holds. The agent memory is not ground truth; rather, it is the ongoing transcript of the agent’s thoughts. Factual accuracy is not embedded in similarity. Two memories, one erroneous and one accurate, can be extremely similar if they fall under the same topic. Each retrieval of the agent loop where a mistaken memory pops up is a signal of validation for that memory as well. RL as a Fix for FMP This is a dimension that is often overlooked by most individuals. In the case where FMP is a reinforcement problem, perhaps the solution to the problem can also be approached from the perspective of a reinforcement problem. In this regard, it will be possible to approach the validation of memories as a reward signal. When the agent uses a memory and applies it in a step in the reasoning process, the result of the step becomes the feedback to indicate the validity of the memory used. When the step results in the production of verifiable results, the agent increases the confidence score of the memory. However, when the step fails, the memory receives penalties and may be deleted. python # Pseudocode: RL-style memory confidence scoring ( somewhat like reward and penalty system - as an extensive pipeline if done ) def update_memory_confidence(memory_id, outcome): memory = memory_store.get(memory_id) if outcome == "correct": memory["confidence"] = min(1.0, memory["confidence"] + 0.1) elif outcome == "contradicted": memory["confidence"] -= 0.3 if memory["confidence"] < 0.2: memory_store.delete(memory_id) # evict low-trust memories memory_store.update(memory_id, memory) The InstructGPT paper laid out the RLHF framework for aligning model outputs with human preferences through reward modeling. The same logic extends naturally here. You're not scoring model outputs, you're scoring memory entries based on how reliable they prove to be over time. Reward signal is obtained from successful completion of the task, corrections made by the user, or verification of results with a known source. Memories with low confidence ratings are not used for recall or are even deleted, interrupting the feedback cycle. This system demands that each memory be uniquely identifiable and assessable, something current pipelines cannot provide. File-Based Memory as a Starting Point Before getting into building the full graph memory system, it is useful to implement a file based memory system first. The logic here is rather straightforward. While vector appending will do fine in the case of raw memories, adding structured memories to files that contain meta-information can be more beneficial. In particular, the metadata includes a timestamp, the importance of the memories, its source, and the level of certainty. As an example of how well it works in practice, the Generative Agents paper can be referenced. Namely, the memory stream they used included an importance score for the memories based on their relative importance according to the agent's perspective. Recall was then performed using the parameters of recency, importance, and relevance. python # File-based memory with recency and confidence scoring import json, time def store_memory(content, source, confidence=0.8): entry = { "content": content, "source": source, "timestamp": time.time(), "confidence": confidence, "access_count": 0 } with open("memory.jsonl", "a") as f: f.write(json.dumps(entry) + "\n") def retrieve_memory(query_embedding, top_k=5): memories = load_all() for m in memories: m["score"] = ( 0.4 * cosine_sim(query_embedding, m["embedding"]) + 0.3 * recency_score(m["timestamp"]) + 0.3 * m["confidence"] ) return sorted(memories, key=lambda x: x["score"], reverse=True)[:top_k] Metadata aware retrieval lets you filter out old or low-confidence memories before they even enter the ranking stage. JSONL format keeps it auditable. You can inspect, debug, and manually correct memory entries, something you can't easily do with a black box vector store. The access count field lets you track which memories are being retrieved most, which is a proxy for influence on agent behavior. Graph Memory as the Real Upgrade File based memory systems are decent. Graph-based memory systems are better. List-based memory systems treat each memory as separate data, which means they lack relational memory. User prefers Python and user's project uses asyncio are two separate memories that are related to each other. Storing and retrieving these two memories separately will mean that their relationship cannot be determined at retrieval time. Graph-based memory systems are based on the concept of nodes. Nodes represent the memories, while edges represent relations between memories. Relations include contradiction, dependency, derivation and updates. Retrieving any node also means traversing the edges, meaning you always get relational context and contradictions at retrieval time. Detection of contradiction happens structurally, whereby the introduction of memory whose edge is marked contradicting will alert the system to do an investigation rather than overwriting it silently. Using graph traversal helps achieve richer results through retrieval without having to increase the number of similarity queries. MemoryBank proves that graph structured memory enables agents to retain far more consistent personae and factual information than would be the case with flat retrieval systems. The derived from edge becomes particularly helpful in detecting FMPs because one wrong root memory generates several other memories that may need pruning. The Context Window is Not Your Friend Here People think bigger context windows solve memory problems. They don't. A 1M token context window just means you can fit more potentially wrong information in one shot. The retrieval problem doesn't disappear. It shifts. Instead of deciding what to retrieve, you're now deciding what to include in a very long prompt, and the model has to figure out what's relevant inside that wall of text. The Lost in the Middle paper showed something uncomfortable. LLMs perform significantly worse at using information that appears in the middle of long contexts compared to information at the start or end. So even if you dump everything into context, the model is not treating all of it equally. Position matters. Recency matters. The retrieval problem just moved inside the context window. Long context is merely a cheat to delay the problem, without addressing it. The middle part of the context is automatically undervalued, meaning that any important memory stored there will simply be overlooked. Intelligent external memory with selective recall always beats context dumping for complex multi stage processes. CONCLUSION The bottleneck for agents is not computation; it’s epistemology. An agent that can’t tell the difference between what it knows and what it believes itself to know cannot be trusted. UMG inflates the search space. FMP contaminates the data source. RAG pulls from a poisoned source. And a wider context simply means more poison to work with. The solution is not going to come from one research paper or even one framework. It comes from taking agent memories seriously, just like we take database management seriously. Schemas, validation processes, eviction strategies, scoring algorithms, audits. Until we do that, agents will continue to loop around, confidently but mistakenly.