ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

ContextKeeper

ContextKeeper — Safe project state tracking for AI agents. Manual checkpoint creation with validated inputs. No background processes, no PID manipulation, no...

MIT-0 · Free to use, modify, and redistribute. No attribution required.
0 · 566 · 1 current installs · 1 all-time installs
byGopinath Nelluri@gopinathnelluri
MIT-0
Security Scan
VirusTotalVirusTotal
Suspicious
View report →
OpenClawOpenClaw
Suspicious
medium confidence
Purpose & Capability
Name and description describe a local project checkpoint/dashboard tool. The provided scripts (ckpt.sh, dashboard.sh) implement that behavior: auto-detect git repo, create JSON checkpoints, show status. This capability is coherent with the stated purpose. However, metadata in SKILL.md declares no required binaries while the usage and Requirements section mention bash and git — an inconsistency that should be clarified.
!
Instruction Scope
SKILL.md and the security table repeatedly state 'No command execution' and similar assurances, but the package includes shell scripts that run git, ln, grep, sed, and optionally python3. The scripts accept a user message and write files under $HOME/.memory/contextkeeper. The scripts include a json_escape function to mitigate injection, but the documentation's claim of 'no command execution' contradicts the presence and intended execution of these scripts.
Install Mechanism
No install spec and no downloads — instruction-only with bundled scripts. This minimizes install risk. Files are executed from repository files; nothing is fetched from external URLs.
Credentials
No environment variables or credentials are requested. Scripts write to $HOME/.memory/contextkeeper and run git locally. That is proportionate for a local project-state tool. There is no network activity or external endpoints in the provided code.
Persistence & Privilege
always:false and model invocation defaults are unchanged. The skill writes persistent state under the user's home directory (~/.memory/contextkeeper) and creates a symlink current-state.json — this is expected for a checkpoint tool and does not modify other skills or system-wide settings.
What to consider before installing
This skill appears to be a local checkpoint/dashboard tool that writes JSON checkpoint files to ~/.memory/contextkeeper and reads local git metadata. No network calls or credentials are requested, which is good. However, the README/metadata contains contradictory claims (e.g., 'No command execution' and 'requires: none') while the packaged scripts clearly run shell commands and require git/bash. Before installing or invoking: 1) Review and accept that the skill will create and write files under $HOME/.memory/contextkeeper. 2) Confirm you’re comfortable with local git metadata (file names, recent commits) being stored there. 3) If you need stronger guarantees, run the scripts in a sandboxed environment or inspect them line-by-line (they are simple shell scripts) and consider adjusting them to your policies. The mismatch between documentation claims and included scripts is the main reason for a 'suspicious' rating — likely sloppy documentation, but verify before trusting the skill for sensitive environments.

Like a lobster shell, security has layers — review code before you run it.

Current versionv0.2.3
Download zip
agentvk9756hzgr3dkz3kmdpkc3ep3cs81ev73aivk9756hzgr3dkz3kmdpkc3ep3cs81ev73bugfixvk972cjft9cj4jejaf4v4nxa3wh81e28bcheckpointvk9756hzgr3dkz3kmdpkc3ep3cs81ev73contextvk9756hzgr3dkz3kmdpkc3ep3cs81ev73contextkeepervk97eyfpy5dmm6c1esrzrrsmc2h81ebp4continuationvk97fe5gcgs183w735kk0fxs98581dzfmdashboardvk97fg7hnkz4rh6e8sstvqn72ss81cv2mforeground-onlyvk9756hzgr3dkz3kmdpkc3ep3cs81ev73gitvk9756hzgr3dkz3kmdpkc3ep3cs81ev73intentvk97fe5gcgs183w735kk0fxs98581dzfmlatestvk9756hzgr3dkz3kmdpkc3ep3cs81ev73manualvk9756hzgr3dkz3kmdpkc3ep3cs81ev73memoryvk9756hzgr3dkz3kmdpkc3ep3cs81ev73no-backgroundvk9756hzgr3dkz3kmdpkc3ep3cs81ev73no-pidvk9756hzgr3dkz3kmdpkc3ep3cs81ev73productivityvk97fe5gcgs183w735kk0fxs98581dzfmproject-statevk9756hzgr3dkz3kmdpkc3ep3cs81ev73projectsvk9756hzgr3dkz3kmdpkc3ep3cs81ev73rce-patchvk972cjft9cj4jejaf4v4nxa3wh81e28bresumevk9756hzgr3dkz3kmdpkc3ep3cs81ev73safevk9756hzgr3dkz3kmdpkc3ep3cs81ev73securityvk9756hzgr3dkz3kmdpkc3ep3cs81ev73security-verifiedvk97eyfpy5dmm6c1esrzrrsmc2h81ebp4statevk9756hzgr3dkz3kmdpkc3ep3cs81ev73trackingvk9756hzgr3dkz3kmdpkc3ep3cs81ev73workflowvk9756hzgr3dkz3kmdpkc3ep3cs81ev73

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

SKILL.md

ContextKeeper 🔮

Safe project state tracking for AI agents

Keeps track of what you're working on across sessions. Create checkpoints manually, view status in dashboard.

Security

RiskMitigation
Remote Code ExecutionNo command substitution with user data
PID manipulationNo PID files, no process management
Background processesNo watchers, no daemons
Injection attacksInput validated and escaped

Scripts

Two simple foreground scripts:

ScriptPurpose
ckpt.shCreate checkpoint with message
dashboard.shView project status

Usage

# Create checkpoint
./ckpt.sh "Fixed auth issue"

# View status
./dashboard.sh

Requirements

  • bash
  • git (for project detection)

Part of: TheOrionAI

Files

4 total
Select a file
Select a file to preview.

Comments

Loading comments…