Back to plugin
Pluginv1.0.1
ClawScan security
Compaction Debugger · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignApr 5, 2026, 7:22 AM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The plugin's code, instructions, and manifest are consistent with a local OpenClaw context-engine that preprocesses and audits session context; it reads/writes local session/log files for diagnostics but does not request external credentials or perform network exfiltration.
- Guidance
- This plugin appears to do what it says: preprocess conversation context, delegate formal compaction to the runtime, and keep local diagnostic logs. Before installing, consider: 1) Logs contain message snippets, tool arguments, file paths and possibly secrets — enable debug logging only for testing and review logs before sharing. 2) The plugin writes logs and caches under ~/.openclaw/extensions/compaction-debugger; ensure those files have appropriate filesystem permissions and rotation/cleanup policies. 3) The legacy code will attempt to read local session files (expected for auditing); if you have sensitive transcripts on disk, review the code or disable debug/logging. 4) There are no network calls or credential requests in the package, but if you plan to publish or use in production, run it in a controlled environment and test with non-sensitive sessions first.
Review Dimensions
- Purpose & Capability
- okName/description (compaction/debugging of long chats) match what the code and SKILL.md implement: a context-engine that assembles/compacts, delegates to the runtime, logs diagnostics, and ships a set of helper skills. No unrelated requirements (no cloud credentials, no unrelated binaries) are declared or used.
- Instruction Scope
- noteSKILL.md and skills' docs instruct the agent and user to read/write plugin logs under ~/.openclaw/extensions/compaction-debugger/logs and to inspect session transcripts; the code implements the described assemble/compact/afterTurn behavior. Note: the auditing and viewer skills intentionally read session transcripts and log message content (including tool call arguments and snippets of messages). This is expected for an auditing/compaction tool but means sensitive message contents may be persisted to disk.
- Install Mechanism
- okNo install-time network downloads or URL-based installers are present; package.json/openclaw metadata indicate normal npm packaging. There is no external fetch or extraction of arbitrary archives in the files provided.
- Credentials
- okThe plugin declares no required env vars or credentials. It reads HOME/USERPROFILE to locate session files (expected for a local agent extension). No unrelated secrets or third-party credentials are requested.
- Persistence & Privilege
- noteThe plugin writes logs and a small cache under its extension directory (~/.openclaw/extensions/compaction-debugger/{logs,cache}) and may read session files from standard OpenClaw session locations. It is not always-enabled (always:false) and does not modify other plugins' configs. Persisting diagnostics locally is expected, but users should be aware logs may contain message snippets, tool outputs, file paths, and other sensitive data.