ClawHub

Openclaw Skill Session Memory

v0.1.0

Automatically saves conversations daily with sensitive data redacted and supports fast keyword search across recent sessions.

0· 263·1 current·1 all-time
by魏然@qiaotucodes
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
medium confidence
Purpose & Capability
Name/description state local conversation recording, redaction, and search; the included Python scripts (record.py, search.py, skill.py) implement those behaviors and only read/write under ~/.openclaw (sessions -> memory/conversations), which is consistent with the declared purpose.
Instruction Scope
SKILL.md instructs the agent to run the included scripts and references the same file paths the code uses. The scripts read JSONL session logs from ~/.openclaw/agents/main/sessions and write markdown files under ~/.openclaw/.../memory/conversations — this is expected for a session-memory skill. Note: the skill stores full conversation text (albeit redacted) on disk; there is no network exfiltration or access to other system config files.
Install Mechanism
No install spec (instruction-only packaging) and all code is included in the package. Nothing is downloaded or executed from remote URLs, so install risk is low.
Credentials
The skill requires no environment variables or external credentials. Its file access is limited to OpenClaw session logs and the skill's own memory directory in the user's home — proportional to its purpose.
Persistence & Privilege
always is false and the skill does not request persistent platform-level privileges. It writes its own files under the user's home directory only and does not modify other skills or global agent configs.
Assessment
This skill appears to do what it claims: locally save session logs and provide search with regex-based redaction. Before installing: (1) review and test the redaction rules — some patterns (very generic long-string rule) may over-redact or miss secrets; (2) be aware conversation logs are written unencrypted to ~/.openclaw/.../memory/conversations — ensure filesystem permissions and backups meet your privacy needs; (3) the package has minor implementation issues (e.g., skill.py references timedelta without importing it in one function) — test in a safe environment first and consider fixing those bugs; (4) if you need stronger protection, consider encrypting the memory directory or restricting access to the session files. If you want, I can point out the exact lines to change for the timedelta/import bug and suggest safer redaction regex adjustments.

Like a lobster shell, security has layers — review code before you run it.

latestvk97d33gphs72p5t2age0n1xr3x8241y9

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments