Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
Context Sentinel
v1.0.0Monitors session context and automatically manages model switching based on a cascading protocol. Use as part of a heartbeat or cron job to maintain session health and optimize token usage.
⭐ 4· 1.2k·6 current·7 all-time
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Suspicious
medium confidencePurpose & Capability
The name/description (monitor session context and switch models) matches the requested capabilities, but the SKILL.md expects a PowerShell script (scripts/check_context.ps1) and MEMORY.md to exist and drive behavior — neither are bundled. Asking the agent to run 'session_status' and write to a 'handoff' file is plausible for this purpose, but the absence of the script and referenced docs makes the package incomplete and incoherent.
Instruction Scope
Instructions tell the agent to execute a PowerShell script, evaluate its output, run a 'session_status' command, and potentially write to a handoff file. Those are system-level actions (running scripts, writing files, invoking agent commands). The SKILL.md is vague about the handoff file path, the contents of the script, and what 'session_status' does — granting broad discretion and potential to affect session state or system files without explicit boundaries.
Install Mechanism
This is an instruction-only skill with no install spec and no code files, which is low-risk from an installer/extraction perspective. However, because runtime behavior depends on an external script that isn't included, the skill as-published cannot function as-is.
Credentials
The skill requests no environment variables, credentials, or config paths. That is proportionate to its stated goal. Still, the instructions reference reading/writing session state and handoff files (unspecified), so the skill could interact with system files if the external script or agent commands do so.
Persistence & Privilege
The skill does not request always: true and is user-invocable (defaults). Autonomous invocation (disable-model-invocation: false) is the platform default; combined with the vague runtime actions this increases potential impact if the missing script were later supplied or pointed to a different path. On its own this is not a showstopper, but it amplifies the other concerns.
What to consider before installing
Do not install or run this skill as-is. The SKILL.md references a PowerShell script (skills/context-sentinel/scripts/check_context.ps1) and MEMORY.md that are not included — the package is incomplete. Before using: (1) ask the author to provide the exact script and MEMORY.md and review their contents line-by-line to ensure they only read the expected session state and write only to explicit, safe paths; (2) confirm what the 'session_status' command does and where the handoff file lives; (3) run any provided script in a sandboxed environment first (or inspect it locally) rather than allowing automatic/cron invocation; (4) avoid granting persistent/autonomous execution until the implementation is complete and you trust the source. Because the instructions are vague and reference system-level actions, treat this skill as potentially risky until its missing artifacts and exact behaviors are provided and reviewed.Like a lobster shell, security has layers — review code before you run it.
latestvk97dr0nxcs4kexk25y7bdbt9w980zvdx
License
MIT-0
Free to use, modify, and redistribute. No attribution required.