Session Daily Backup - Obsidian

自动每日凌晨备份 OpenClaw 会话到 Obsidian，以增量方式合并多 session，并支持 Token 监控与 QQ 警告。

This skill appears to do what it says (local backups + optional QQ warnings) but take these precautions before installing: - Inspect and adapt the config file: change SESSION_DIR, VAULT_DIR, and TRACKING_DIR to paths appropriate for your system and user (avoid running as root unless intentional). - Fix variable/path mismatches: SKILL.md/README list QQ_APPID/QQ_SECRET, while scripts check QQ_BOT_URL and QQ_USER_ID and expect format_message_v2.jq under the tracking dir. Ensure format_message_v2.jq (or .txt) is placed where the scripts expect or update the script paths. - Permissions: the scripts read session files (sensitive conversations). Only grant read access to the account that will run these scripts. - External endpoints: if you configure QQ_BOT_URL, verify the URL is a trusted QQ API endpoint; the skill may POST short warning messages there. The scripts do not upload full session content to remote servers by default, but misconfiguring the send function could leak info—review and test send_qq_warning before enabling. - Test manually: run scripts by hand from a safe test session directory to confirm outputs and behavior before adding to cron. If you want, I can produce a corrected config template and a small checklist of edits to make the scripts safe for your environment.

Type: OpenClaw Skill Name: session-daily-backup-obsidian Version: 1.0.0 The skill is designed to back up OpenClaw sessions to Obsidian but contains significant security vulnerabilities. Specifically, `save_full_snapshot.sh` is vulnerable to path traversal because the `TOPIC` argument is used in a file path without sanitization, and `create_hourly_snapshots.sh` is susceptible to JQ injection as the `DATE` argument is interpolated directly into a JQ filter string. While the behavior aligns with the stated purpose, these flaws allow for unauthorized file writes or logic manipulation if the scripts are executed with untrusted input.