Session Recall
v1.0.0Recover conversation context when a message arrives with unclear meaning. Use when a user's message lacks context (e.g. "I logged in" with no prior mention o...
⭐ 0· 64·0 current·0 all-time
byYoshikazu Terashi@yozu
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Benign
high confidencePurpose & Capability
The skill's name/description match its behavior: it searches session transcripts, memory files, and summaries to reconstruct context. Minor mismatch: the registry lists no required binaries/env, but SKILL.md and the included script require python3, grep, and bash (and optionally respect OPENCLAW_SESSIONS_DIR). This is an implementation detail worth fixing but doesn't change the core purpose.
Instruction Scope
Instructions explicitly direct the agent to read session .jsonl, archived .reset files, and local memory files under ~/.openclaw/agents/... and to run the bundled search script. All of this is within the declared scope (recovering context). Because these files can contain sensitive data, the skill sensibly warns about not piping results to public channels. The SKILL.md assumes a single-user/single-agent setup; on multi-user/shared hosts this could expose other users' transcripts.
Install Mechanism
No install spec (instruction-only) and the included shell script is local and readable. There are no downloads, no extracted archives, and no network endpoints in the code. Risk from the install mechanism is low.
Credentials
The registry declares no required environment variables or credentials, which is consistent with not needing remote APIs. The script optionally honors OPENCLAW_SESSIONS_DIR and defaults to ~/.openclaw/agents/main/sessions; the skill's need to access those local files is appropriate for its purpose but grants access to all session transcripts in that directory (sensitive data).
Persistence & Privilege
The skill is not always-enabled, does not request elevated privileges, and does not modify other skills or system-wide settings. It only reads local files and runs local commands; it does not persist credentials or install background services.
Assessment
This skill is coherent with its purpose but it reads local session transcripts which often contain sensitive data (API keys, passwords, private messages). Before installing: (1) Confirm you run this in a single-user environment or accept that the skill can read all files under the agent sessions directory. (2) Review the included scripts (scripts/search_sessions.sh) yourself — they contain no network calls but will print matching snippets. (3) Ensure python3/grep/bash are present or update the registry metadata to list them. (4) Consider setting file-system permissions so the agent can only read intended sessions, or set OPENCLAW_SESSIONS_DIR to a restricted path. (5) If you run agents on a hosted/shared system, avoid enabling autonomous invocation or restrict what the agent may output to external channels to reduce exfiltration risk.Like a lobster shell, security has layers — review code before you run it.
latestvk97ba6cm33szrzya9kvsq7zr4x841hkm
License
MIT-0
Free to use, modify, and redistribute. No attribution required.