← 返回 Skills 市场
maverick-software

Session History Enhanced

作者 maverick-software · GitHub ↗ · v1.0.1
cross-platform ⚠ suspicious
427
总下载
0
收藏
1
当前安装
2
版本数
在 OpenClaw 中安装
/install session-history-enhancements
功能描述
Session history system for OpenClaw — persistent, browsable, resumable chat sessions with SQLite index, archive/restore, migration, paginated UI, and chat dr...
安全使用建议
This skill appears internally consistent and implements a local session-history feature. Before applying it: (1) back up your OpenClaw session directories (e.g., ~/.openclaw/agents/*/sessions/) because the migration and archive operations move and can delete transcript files; (2) review INSTALL.md and ensure your environment can build / has the SQLite/native node bindings referenced by the code (DatabaseSync); (3) test in a staging copy of your data first so you can confirm migration behavior; (4) be aware that the migration auto-runs on first access and will index/move orphaned .jsonl files — if you want to control timing, run migration manually or inspect the code first; (5) review the code snippets for any site-specific path usage if you run multiple agents, since operations are performed per-agentId. If you want extra assurance, ask for the missing INSTALL.md and a diff/PR that will be applied so you can review the exact changes before installing.
功能分析
Type: OpenClaw Skill Name: session-history-enhancements Version: 1.0.1 The skill introduces a session history system with SQLite indexing and file management. While the primary functionality is benign and uses good practices like prepared statements for SQL and TypeBox for RPC input validation, there are theoretical vulnerabilities. Specifically, the `sessions.deleteArchived` RPC in `references/backend-rpc-handlers.ts.txt` uses `fs.unlinkSync(filePath)` to delete transcript files. Although `filePath` is derived from internal logic (`path.join` with controlled directories and filenames), a sophisticated path traversal vulnerability could theoretically lead to arbitrary file deletion if an attacker could inject a malicious path into the SQLite database. Similarly, `JSON.parse` is used on the first line of internal `.jsonl` transcript files in `references/backend-session-archive.ts.txt` and `references/backend-history-migration.ts.txt`, which could pose a risk if an attacker could introduce a specially crafted file. These are vulnerabilities (flaws that *allow* attacks) rather than clear evidence of *intentional malicious behavior*.
能力评估
Purpose & Capability
The name/description match the provided SKILL.md and reference files: backend RPC handlers, SQLite history DB, migration, archive/restore logic, and frontend UI changes. No unrelated environment variables, binaries, or network endpoints are requested.
Instruction Scope
Runtime instructions and referenced code perform local filesystem operations (reading sessions.json, moving/renaming transcript .jsonl files into an archive folder, optionally deleting transcripts) and create/modify a local SQLite DB. These actions are coherent with a session-archival feature but are stateful and destructive (files moved/deleted) — migration auto-runs on first access and may move/or index orphaned .jsonl files.
Install Mechanism
This is an instruction-only skill (no install spec, no downloads). Risk from installation mechanism is low. Note: the referenced code uses a synchronous SQLite API (DatabaseSync from 'node:sqlite') which implies the project must already include/build the appropriate sqlite native bindings when you actually apply the changes.
Credentials
No environment variables, credentials, or external tokens are requested. All file/path access is scoped to OpenClaw's agent session directories and SQLite DBs, which is proportionate to the stated purpose.
Persistence & Privilege
The skill is not 'always: true' and doesn't request persistent platform-level privileges. It adds RPC handlers and UI wiring (normal for a feature patch). Autonomous invocation is allowed by default (platform behavior) but is not combined here with broad credentials or other red flags.
如何使用
  1. 确保已安装 OpenClaw(本地或 Docker 部署)
  2. 在对话框中输入安装命令:/install session-history-enhancements
  3. 安装完成后,直接呼叫该 Skill 的名称或使用 /session-history-enhancements 触发
  4. 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.1
- Added direct archival of active sessions from the dashboard via an Archive button (excluding Main Session). - Introduced the `sessions.archive` RPC endpoint to support on-demand session archiving. - Updated UI to include Archive action, clearer Session History section, and enhanced pagination controls. - Extended documentation for all 5 session history RPC endpoints and clarified their parameters and behavior. - Improved dropdown integration: archived sessions selectable via a dedicated value format and with better filtering. - Expanded Common Pitfalls and architectural notes to reflect new archive/resume workflow and dropdown usage patterns.
v1.0.0
Introduces persistent, browsable, multi-session history for OpenClaw with SQLite, dashboard UI, and chat dropdown integration. - Adds SQLite-backed multi-session history, enabling session indexing, search, and pagination. - Implements session archive/restore, resume, rename, and delete features. - Full dashboard UI for browsing/searching archived and active sessions with paginated lists. - Auto-migrates existing transcripts into the new history system. - Integrates recent sessions into the chat dropdown with "View All Sessions" navigation.
元数据
Slug session-history-enhancements
版本 1.0.1
许可证
累计安装 1
当前安装数 1
历史版本数 2
常见问题

Session History Enhanced 是什么?

Session history system for OpenClaw — persistent, browsable, resumable chat sessions with SQLite index, archive/restore, migration, paginated UI, and chat dr... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 427 次。

如何安装 Session History Enhanced?

在 OpenClaw 或 Claude Code 对话框中运行命令「/install session-history-enhancements」即可一键安装,无需额外配置。

Session History Enhanced 是免费的吗?

是的,Session History Enhanced 完全免费(开源免费),可自由下载、安装和使用。

Session History Enhanced 支持哪些平台?

Session History Enhanced 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。

谁开发了 Session History Enhanced?

由 maverick-software(@maverick-software)开发并维护,当前版本 v1.0.1。

推荐 Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463815 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259802 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200680 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191345 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190333 · by oswalpalash

💬 留言讨论