by 安全扫描
OpenClaw
安全
medium confidenceThe skill's instructions, required resources, and behavior are consistent with a session-monitoring/checkpointing helper; nothing requested is disproportionate, but the runtime instructions are a bit vague about paths and in-scope files so review before enabling.
评估建议
This skill appears to do what it says: monitor context levels and save checkpoints to memory files. Before installing: (1) confirm what 'memory/' directory the agent will use and that the skill is restricted to that path (avoid giving it open filesystem read access); (2) ensure session_status exists and returns contextTokens as expected; (3) review what kinds of information will be saved (decisions, pending tasks, file paths) and avoid storing secrets or credentials in checkpoints; (4) consider ...详细分析 ▾
✓ 用途与能力
Name/description (monitor session context and save checkpoints) match the instructions: check session_status contextTokens and write checkpoint files under memory/YYYY-MM-DD.md. No unrelated credentials, binaries, or installs are requested.
ℹ 指令范围
Instructions explicitly read/write memory/YYYY-MM-DD.md and call session_status to get contextTokens — these are appropriate for a checkpointing watchdog. However the doc is somewhat vague about the exact memory directory root and where 'Files modified and their paths' should be sourced from, which could lead an agent to attempt broader filesystem reads if not constrained. It also assumes a session_status command with a contextTokens field exists.
✓ 安装机制
No install spec and no code files — lowest risk. Nothing will be downloaded or installed by this skill.
✓ 凭证需求
No environment variables, credentials, or external service tokens are requested; the skill's data access is limited to its declared memory file usage.
ℹ 持久化与权限
Skill writes persistent checkpoint files to memory/YYYY-MM-DD.md which is coherent for a checkpointing tool. 'always' is false and autonomous invocation is allowed by default. Consider whether persistent memory writes are acceptable for your privacy/retention policies.
安全有层次,运行前请审查代码。
运行时依赖
无特殊依赖
版本
latestv1.0.02026/2/22
First release: warns before context compaction, saves checkpoints automatically, and protects key decisions/tasks during long sessions.
● 无害
安装命令 点击复制
官方npx clawhub@latest install session-watchdog
镜像加速npx clawhub@latest install session-watchdog --registry https://cn.clawhub-mirror.com
技能文档
Monitors context levels, warns before compaction, and saves checkpoints to preserve important information.
Context Thresholds
| Level | Tokens | Action |
|---|---|---|
| Safe | 0-140k | Normal operation |
| Warning | 140k-160k | Warn user, save checkpoint |
| Critical | 160k-197k | Warn + stop unless urgent |
| Full | 197k+ | Compaction imminent |
Check Context
Before each session and periodically during long conversations:
session_status
Check the contextTokens field from the response.
Checkpoint Protocol
When approaching 80% (160k tokens):
- Save checkpoint to memory file:
- Alert user:
- Ask user:
What to Save
Essential information that must survive compaction:
- Decisions made in this conversation
- Pending tasks not yet completed
- Important context (project state, configurations, preferences)
- Files modified and their paths
- Unresolved issues requiring follow-up
When to Trigger
- At session start
- After every 30k tokens of conversation
- Before initiating large tasks (file edits, multiple operations)
- When user asks "how much context do we have left?"
Memory File Format
# YYYY-MM-DDSession Checkpoint (at X% context)
Decisions
- Decision 1
- Decision 2
Pending
- [ ] Task 1
- [ ] Task 2
Important Context
- Project state: ...
- Last file modified: ...
Unresolved
- Issue needing follow-up
数据来源:ClawHub ↗ · 中文优化:龙虾技能库
OpenClaw 技能定制 / 插件定制 / 私有工作流定制
免费技能或插件可能存在安全风险,如需更匹配、更安全的方案,建议联系付费定制