ChronoSync
v1.0.2跨会话聊天记录同步工具。自动备份 OpenClaw 各会话的聊天记录, 实现会话间记忆共享,避免切换会话后丢失上下文。
⭐ 1· 207·0 current·0 all-time
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Benign
high confidencePurpose & Capability
Name/description match the implementation: code reads local OpenClaw session .jsonl files, performs change-detection, sanitizes content, writes shared_chat.json/.md and plugin outputs. No unrelated credentials, binaries, or services are requested.
Instruction Scope
SKILL.md instructs local installation, running check_install.py, adding a cron job, and running python -m session_sync; the code implements exactly those behaviors and only references expected paths (OPENCLAW_STATE_DIR, SESSION_SYNC_OUTPUT). It reads sessions and writes local files; it does not call external endpoints.
Install Mechanism
There is no install spec (lowest platform-level risk). However the skill bundle includes multiple Python modules that will be executed when invoked. Dynamic plugin loading executes plugin code from the plugins/ directory — expected for a plugin architecture but worth noting: installing additional/untrusted plugin files into that directory would run arbitrary code.
Credentials
No required environment variables or credentials are declared. The code optionally respects SESSION_SYNC_OUTPUT and OPENCLAW_STATE_DIR environment variables (documented in SKILL.md). No secret or cloud credentials are requested or used.
Persistence & Privilege
always is false and the skill does not modify other skills or system-wide settings. It writes files to a user-space OpenClaw workspace directory as expected for its purpose. Autonomous invocation is allowed (platform default) but not an additional privilege here.
Assessment
This skill appears coherent and local-only: it reads OpenClaw session files and writes shared JSON/Markdown and plugin outputs in ~/.openclaw/workspace/memory/sync (or an alternate path you set). Before installing: 1) Confirm you trust the skill source — the package includes executable Python code that will run on your machine. 2) Review any plugins you add or that come bundled — the plugin loader will execute plugin code from plugins/. 3) Be aware sanitization is heuristic (regex-based) and may not remove all secrets — avoid sending highly-sensitive secrets in chat if you plan to sync backups. 4) Check file permissions and backup existing session data if you need to preserve the original state. If you want more assurance, request a full line-by-line security review of the truncated/remaining portion of session_sync.py main routine (the supplied file was truncated in the bundle listing).Like a lobster shell, security has layers — review code before you run it.
backupvk97az4ga12xx9swkh6ryw0e3gd82wcd0chat-backupvk973k7vg1bty6b5tg095bb155582tnnrchat-historyvk97az4ga12xx9swkh6ryw0e3gd82wcd0contextvk973k7vg1bty6b5tg095bb155582tnnrknowledgevk973k7vg1bty6b5tg095bb155582tnnrlatestvk97az4ga12xx9swkh6ryw0e3gd82wcd0memoryvk97az4ga12xx9swkh6ryw0e3gd82wcd0sessionvk97az4ga12xx9swkh6ryw0e3gd82wcd0session-syncvk973k7vg1bty6b5tg095bb155582tnnrsyncvk97az4ga12xx9swkh6ryw0e3gd82wcd0todovk973k7vg1bty6b5tg095bb155582tnnr
License
MIT-0
Free to use, modify, and redistribute. No attribution required.