← 返回 Skills 市场
Session Context Injector
作者
Nissan Dookeran
· GitHub ↗
· v1.0.0
· MIT-0
90
总下载
0
收藏
0
当前安装
1
版本数
在 OpenClaw 中安装
/install session-context-injector
功能描述
Reorient a Telegram chat after a session reset. Reads a project's STATUS.md (resume point, blockers, next action) and sends a project-specific context inject...
安全使用建议
Before installing or enabling: 1) Confirm how the skill obtains the bot token — metadata lists TELEGRAM_BOT_TOKEN but SKILL.md shows an `op read` (1Password) step; clarify which method will be used and update metadata. 2) Verify PROJECTS_DIR and the locations of sessions.json / memory/telegram-groups.json — these filesystem reads are not declared and may expose project content; ensure the agent runs in a workspace you trust. 3) Review the Telegram bot's scope and which chats the bot can message (the skill contains a hard-coded special-case chat_id for Nissan). Limit the bot token permissions and rotate it if you enable the skill. 4) Ask the publisher to remove or explain hard-coded IDs, and to declare any CLI tools (e.g., 1Password CLI) needed at runtime. 5) Test in dry-run mode or a sandboxed environment first to ensure messages, truncation, and HTML formatting behave as expected and that no unintended data is leaked. If you cannot get answers to the above, treat the inconsistencies as a risk and do not grant the bot token or filesystem access.
功能分析
Type: OpenClaw Skill
Name: session-context-injector
Version: 1.0.0
The skill is designed to read local project status files and exfiltrate their content to the Telegram Bot API (api.telegram.org) to provide context to chat sessions. While this aligns with the stated purpose, it utilizes high-risk capabilities including outbound network access and local file system reads. Specific indicators include the use of a hardcoded Telegram user ID ('821071206') for specialized reporting and a potential path traversal vulnerability in the 'parse_status' function within SKILL.md, where the 'slug' parameter is used to construct file paths without explicit sanitization.
能力评估
Purpose & Capability
Name/description align with sending project context into Telegram. Required items declared (python3, TELEGRAM_BOT_TOKEN) are reasonable for that purpose. However, the SKILL.md expects other inputs (bot_token via op read, PROJECTS_DIR, memory files like sessions.json/telegram-groups.json) that are not declared in the registry metadata, which is an incoherence.
Instruction Scope
Instructions tell the agent to read local project files (projects/<slug>/STATUS.md), agent memory files (sessions.json, memory/telegram-groups.json), and to retrieve credentials via `op read`. None of these file paths or the use of the 1Password CLI are declared in the skill metadata. The skill will also transmit project STATUS content to external endpoints (api.telegram.org) — expected for the purpose, but you should confirm that sending potentially sensitive project content to Telegram chats is acceptable and limited to intended chat IDs.
Install Mechanism
No install spec and no included code files — instruction-only skill. Low disk/installation risk because nothing is downloaded or written by the skill bundle itself.
Credentials
Metadata declares a single credential (TELEGRAM_BOT_TOKEN), which is appropriate, but the SKILL.md also documents fetching `bot_token` with `op read "op://OpenClaw/Telegram Bot Token/credential"` (1Password) and references PROJECTS_DIR and agent memory files. The additional secret-retrieval and filesystem access are not reflected in requires.env or required config paths, creating a mismatch and potential surprise access to secrets or local files.
Persistence & Privilege
always is false (good). The skill can be autonomously invoked by the agent (default), which combined with an available bot token means it could send messages without manual approval. Autonomous invocation alone is normal, but because the skill posts externally and reads local project state, you should be aware of this behavior.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install session-context-injector - 安装完成后,直接呼叫该 Skill 的名称或使用
/session-context-injector触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.0
session-context-injector v1.0.0 — Initial release
- Introduces project-aware Telegram chat reorientation after session reset, room creation, or collaborator join
- Reads STATUS.md for resume point and blockers, injecting current project context into group chats or DMs
- Sends smart context messages via Telegram Bot API (HTML mode) with tailored variants: group, DM summary, and welcome
- Logs each injection and handles missing/partial data gracefully
- Supports out-of-the-box use with Clawhub playbooks for room/session management
元数据
常见问题
Session Context Injector 是什么?
Reorient a Telegram chat after a session reset. Reads a project's STATUS.md (resume point, blockers, next action) and sends a project-specific context inject... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 90 次。
如何安装 Session Context Injector?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install session-context-injector」即可一键安装,无需额外配置。
Session Context Injector 是免费的吗?
是的,Session Context Injector 完全免费,采用 MIT-0 许可证,可自由下载、安装和使用。
Session Context Injector 支持哪些平台?
Session Context Injector 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 Session Context Injector?
由 Nissan Dookeran(@nissan)开发并维护,当前版本 v1.0.0。
推荐 Skills