A cross-session handoff protocol for Claude Code and other AI agents. handoff is not a summarization tool. It's a protocol for freezing your work context, packaging it, and resuming execution — in any session, any agent, any device.
Security checks across static analysis, malware telemetry, and agentic risk
Overview
This is a coherent handoff skill that saves and restores local work context, but users should protect the persistent handoff files and session identifiers it creates.
This skill appears safe for its stated purpose if you are comfortable with persistent local handoff files. Before installing, decide where HANDOFF_ROOT should live, avoid syncing it to shared cloud storage unless intended, do not store secrets in handoff.md, and review the restore preview before allowing a resumed session to continue.
Static analysis
No static analysis findings were reported for this release.
VirusTotal
VirusTotal findings are pending for this skill version.
Risk analysis
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
Future agents may reuse whatever is in the handoff file, including mistaken, stale, sensitive, or manually edited content.
The skill intentionally creates shared persistent context for future agents or sessions. That is purpose-aligned, but the stored Markdown may contain sensitive project details or instructions that later sessions rely on.
The handoff package lives at a fixed local path. Any agent can read it.
Review the restore preview before confirming, avoid putting secrets in handoff files, and delete or protect old handoff packages when they are no longer needed.
Handoff files may contain local agent session identifiers, which could be exposed if the handoff directory is shared or synced.
The helper derives a session identifier from agent environment variables or local Claude/Codex project session-log filenames and writes it into the handoff file.
if [ -n "${CLAUDE_SESSION_ID:-}" ]; then ... latest_project_session "$HOME/.claude/projects/$project_dir" ... - Session ID:${session_id:-N/A}If session identifiers are sensitive in your environment, remove the Session ID line before sharing or syncing the handoff package.
The skill will create persistent files in the configured handoff directory when invoked.
The included shell helper creates and lists local handoff files. This is expected for the skill, but it means the agent may run a local file-management script as part of the workflow.
HANDOFF_ROOT="${HANDOFF_ROOT:-$HOME/.agents/handoff_context}" ... mkdir -p "$target_dir" ... create_template "$target_dir/handoff.md"Keep HANDOFF_ROOT pointed at a location you control, and inspect the generated file path shown after `handoff out`.
Users have limited upstream context for who maintains the helper script beyond the registry metadata.
The artifact does not provide an upstream source or homepage for provenance, although the included files are visible and no remote installer is present.
Source: unknown; Homepage: none
Install only if you trust the registry package and review the included script before use.