tool-skill-manager

The plugin's code and runtime instructions match its stated purpose (capturing the model-visible tools/skills and letting you toggle them), but it records the assembled system prompt and reads skill files then writes persistent snapshot files locally — those snapshots can contain sensitive prompt/session data, so review storage and access policies before installing.

This plugin appears to do what it claims, but it captures the model's assembled system prompt and reads skill files, then writes snapshots to disk. Before installing: (1) Inspect index.js (already included) and confirm you are comfortable with local file writes to ~/.openclaw/logs/tool-skill-manager; (2) avoid running the plugin in environments where prompts may contain secrets or credentials (tokens, API keys, session tokens), or configure plugin.outputDir to a secure location with strict permissions; (3) audit the snapshot files (latest.json, LATEST.md, catalog.json) after a run to verify they don't contain sensitive material before sharing; (4) if you prefer less persistence, disable or uninstall the plugin when not actively auditing; (5) note that the plugin will read skill files referenced by the assembled prompt — ensure those paths don't expose sensitive configs. If you want a tighter review, request the remaining portions of index.js (the truncated areas that perform writes and state updates) to confirm exactly which fields are recorded and how enable/disable operations are applied.