← Back to Skills Marketplace
gopinathnelluri

ContextKeeper

by Gopinath Nelluri · GitHub ↗ · v0.2.3
cross-platform ⚠ suspicious
823
Downloads
0
Stars
2
Active Installs
7
Versions
Install in OpenClaw
/install contextkeeper
Description
ContextKeeper — Safe project state tracking for AI agents. Manual checkpoint creation with validated inputs. No background processes, no PID manipulation, no...
README (SKILL.md)

ContextKeeper 🔮

Safe project state tracking for AI agents

Keeps track of what you're working on across sessions. Create checkpoints manually, view status in dashboard.

Security

Risk Mitigation
Remote Code Execution No command substitution with user data
PID manipulation No PID files, no process management
Background processes No watchers, no daemons
Injection attacks Input validated and escaped

Scripts

Two simple foreground scripts:

Script Purpose
ckpt.sh Create checkpoint with message
dashboard.sh View project status

Usage

# Create checkpoint
./ckpt.sh "Fixed auth issue"

# View status
./dashboard.sh

Requirements

  • bash
  • git (for project detection)

Part of: TheOrionAI

Usage Guidance
This skill appears to be a local checkpoint/dashboard tool that writes JSON checkpoint files to ~/.memory/contextkeeper and reads local git metadata. No network calls or credentials are requested, which is good. However, the README/metadata contains contradictory claims (e.g., 'No command execution' and 'requires: none') while the packaged scripts clearly run shell commands and require git/bash. Before installing or invoking: 1) Review and accept that the skill will create and write files under $HOME/.memory/contextkeeper. 2) Confirm you’re comfortable with local git metadata (file names, recent commits) being stored there. 3) If you need stronger guarantees, run the scripts in a sandboxed environment or inspect them line-by-line (they are simple shell scripts) and consider adjusting them to your policies. The mismatch between documentation claims and included scripts is the main reason for a 'suspicious' rating — likely sloppy documentation, but verify before trusting the skill for sensitive environments.
Capability Analysis
Type: OpenClaw Skill Name: contextkeeper Version: 0.2.3 The `scripts/ckpt.sh` file contains a JSON injection vulnerability. While most user-controlled inputs are passed through a `json_escape` function, the `files_touched` array is constructed from `git diff --name-only` output without individual filename escaping. An attacker could commit a file with a crafted name (e.g., `foo", "malicious_key": "injected_value`) to inject arbitrary JSON into the checkpoint files, potentially corrupting the agent's state or influencing future behavior. This is a lack of input sanitization, classifying it as suspicious rather than malicious due to the absence of direct evidence of intentional harmful behavior like data exfiltration or RCE within the provided code.
Capability Assessment
Purpose & Capability
Name and description describe a local project checkpoint/dashboard tool. The provided scripts (ckpt.sh, dashboard.sh) implement that behavior: auto-detect git repo, create JSON checkpoints, show status. This capability is coherent with the stated purpose. However, metadata in SKILL.md declares no required binaries while the usage and Requirements section mention bash and git — an inconsistency that should be clarified.
Instruction Scope
SKILL.md and the security table repeatedly state 'No command execution' and similar assurances, but the package includes shell scripts that run git, ln, grep, sed, and optionally python3. The scripts accept a user message and write files under $HOME/.memory/contextkeeper. The scripts include a json_escape function to mitigate injection, but the documentation's claim of 'no command execution' contradicts the presence and intended execution of these scripts.
Install Mechanism
No install spec and no downloads — instruction-only with bundled scripts. This minimizes install risk. Files are executed from repository files; nothing is fetched from external URLs.
Credentials
No environment variables or credentials are requested. Scripts write to $HOME/.memory/contextkeeper and run git locally. That is proportionate for a local project-state tool. There is no network activity or external endpoints in the provided code.
Persistence & Privilege
always:false and model invocation defaults are unchanged. The skill writes persistent state under the user's home directory (~/.memory/contextkeeper) and creates a symlink current-state.json — this is expected for a checkpoint tool and does not modify other skills or system-wide settings.
How to Use
  1. Make sure OpenClaw is installed (local or Docker)
  2. Run the install command in chat: /install contextkeeper
  3. After installation, invoke the skill by name or use /contextkeeper
  4. Provide required inputs per the skill's parameter spec and get structured output
Version History
v0.2.3
Clean documentation: simplified SKILL.md, removed references to deleted scripts, focused on existing features
v0.2.2
Clean tags: removed version numbers from discovery tags for better discoverability
v0.2.1
SECURITY VERIFIED: Only 2 scripts (ckpt.sh + dashboard.sh). NO background processes. NO lsof/kill. NO PID files. User execution only.
v0.2.0
SECURITY PATCH: Fix RCE via command substitution, remove PID file vulnerabilities, add input validation, JSON escaping
v0.1.2
v0.1.2: Fixed skill structure, use write tool, added dev notes and version history
v0.1.1
Auto-project detection from git + working dashboard script
v0.1.0
Initial release: Auto-project state tracking and intent routing for AI agents
Metadata
Slug contextkeeper
Version 0.2.3
License
All-time Installs 2
Active Installs 2
Total Versions 7
Frequently Asked Questions

What is ContextKeeper?

ContextKeeper — Safe project state tracking for AI agents. Manual checkpoint creation with validated inputs. No background processes, no PID manipulation, no... It is an AI Agent Skill for Claude Code / OpenClaw, with 823 downloads so far.

How do I install ContextKeeper?

Run "/install contextkeeper" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is ContextKeeper free?

Yes, ContextKeeper is completely free (open-source). You can download, install and use it at no cost.

Which platforms does ContextKeeper support?

ContextKeeper is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).

Who created ContextKeeper?

It is built and maintained by Gopinath Nelluri (@gopinathnelluri); the current version is v0.2.3.

More Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191115 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 Comments