Openclaw Skill Session Memory
Security checks across static analysis, malware telemetry, and agentic risk
Overview
This is a coherent local session-memory skill, but it does persist searchable copies of OpenClaw conversations on disk.
This skill appears aligned with its description and does not show exfiltration, hidden networking, destructive actions, or credential abuse. Before installing, be comfortable with OpenClaw conversations being saved locally as searchable markdown files, and remember that automatic redaction is heuristic rather than a guarantee.
Static analysis
No static analysis findings were reported for this release.
VirusTotal
VirusTotal findings are pending for this skill version.
Risk analysis
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
Your conversations may remain on disk in searchable memory files, and pattern-based redaction may not catch every sensitive detail.
The recorder reads local OpenClaw session logs and writes conversation memories to persistent local markdown files. This is the skill's stated purpose, but it creates reusable stored context from private conversations.
MEMORY_DIR = Path.home() / ".openclaw" / "workspace" / "memory" / "conversations" SESSIONS_DIR = Path.home() / ".openclaw" / "agents" / "main" / "sessions"
Install only if you want local conversation memory. Periodically review or delete files under the memory/conversations directory, and avoid putting secrets in conversations you do not want stored.