by 安全扫描
OpenClaw
可疑
medium confidenceThe skill does what it says (automatically recording and reloading conversation memory), but it reads/writes local files (including ~/.openclaw/workspace/ and memory/*.md) without declaring those config paths or requiring user confirmation — this raises privacy and scope concerns you should review before installing.
评估建议
This skill will append all conversations to local files (memory/YYYY-MM-DD.md and MEMORY.md under your workspace) and will read recent memory automatically when you ask it to 'continue'. Before installing, consider: (1) Do you consent to automatic, unprompted logging of every conversation? (2) Where will memory/ and ~/.openclaw/workspace/ be created and who can read those files? (3) Do you need an opt-in toggle, redaction, or encryption for stored memories? (4) Ask the publisher to declare confi...详细分析 ▾
ℹ 用途与能力
The name/description (context continuity and memory management) match the instructions: the skill writes daily memory files and reads recent memory to resume context. This capability is coherent with the stated purpose. However, the SKILL.md expects a local memory directory and a workspace path (~/.openclaw/workspace/) even though the skill metadata declared no required config paths — a mismatch that should be clarified.
⚠ 指令范围
The runtime instructions directly tell the agent to append every conversation to memory/YYYY-MM-DD.md and to read the last 7 days of memory via shell commands (echo, cat, date). They mandate 'automatic recording of all conversations without user confirmation', which is a material privacy/scope decision. The instructions reference specific file paths (memory/, MEMORY.md, ~/.openclaw/workspace/) and perform file I/O; those file accesses are not declared in the skill metadata and could include sensitive content.
✓ 安装机制
No install spec and no code files are present (instruction-only). This minimizes supply-chain/install risk because nothing is downloaded or written during install.
⚠ 凭证需求
The skill requests no environment variables or credentials, which is appropriate, but it nevertheless performs local file writes/reads in the user's workspace and memory directories. Because these paths were not declared in requires.config, the skill's access to local files is not proportionately disclosed. Automatically writing full conversation content to disk without opt-in is a privacy risk.
ℹ 持久化与权限
always is false and model invocation is allowed (defaults). There is no indication the skill tries to modify other skills or system-wide settings. The main persistence concern is the skill's own habit of creating/writing long-term memory files and recommending archiving/deletion policies; that behavior is powerful but consistent with its purpose.
安全有层次,运行前请审查代码。
运行时依赖
无特殊依赖
版本
latestv1.1.02026/3/19
改为自动记忆模式,无需用户确认
● 可疑
安装命令
点击复制官方npx clawhub@latest install context-continuity
镜像加速npx clawhub@latest install context-continuity --registry https://cn.longxiaskill.com