Context Cache Manager Security Report — Trusted | ClawSafe

5 /100

Context Cache Manager

Fork-safe context cloning + intelligent compression + fast session recovery for AI agent state management

Legitimate context cache manager with no security concerns - only performs local file I/O for session state management.

Skill NameContext Cache Manager

Duration26.3s

Enginepi

✓

Safe to install

Skill is safe to use. No action required.

Findings 2 items

Severity	Finding	Location
Info	Pickle serialization for cache files Uses Python pickle for serialization, which can theoretically be unsafe with untrusted data. However, this is acceptable for local-only cache management with controlled data sources. `with gzip.open(cache_path, 'wb') as f: pickle.dump(asdict(snapshot), f)` → Consider using json or msgpack for serialization to eliminate theoretical deserialization risks, though current usage is low risk due to local-only cache files.	`context_cache_manager.py:89`
Info	Writes to user home directory Cache files are stored in ~/.openclaw/workspace/tmp/context-cache/ which is appropriate for application state but should be documented. `CACHE_DIR = Path.home() / ".openclaw" / "workspace" / "tmp" / "context-cache"` → This is appropriate behavior for a session cache manager - no concern.	`context_cache_manager.py:14`

Resource	Declared	Inferred	Status	Evidence
Filesystem	`WRITE`	`WRITE`	✓ Aligned	context_cache_manager.py:89-93 writes gzip files to CACHE_DIR
Filesystem	`READ`	`READ`	✓ Aligned	context_cache_manager.py:102-113 reads gzip files from CACHE_DIR
Shell	`NONE`	`NONE`	—	No subprocess, os.system, or command execution found
Network	`NONE`	`NONE`	—	No socket, urllib, requests, or network calls found
Environment	`NONE`	`NONE`	—	No os.environ iteration or credential access
Skill Invoke	`NONE`	`NONE`	—	No dynamic skill invocation detected
Clipboard	`NONE`	`NONE`	—	No clipboard access found
Browser	`NONE`	`NONE`	—	No browser automation found
Database	`NONE`	`NONE`	—	No database access found

2 files · 12.7 KB · 458 lines

Python 1f · 291L Markdown 1f · 167L

├─ 🐍 context_cache_manager.py Python 291L · 8.5 KB

└─ 📝 SKILL.md Markdown 167L · 4.2 KB

✓ No network requests or external communications

✓ No shell or subprocess execution

✓ No credential harvesting or environment variable access

✓ No base64, eval, or dynamic code execution

✓ No suspicious download patterns (curl|bash, wget|sh)

✓ Standard library only - no external dependencies

✓ Properly declared filesystem READ/WRITE for cache operations

✓ Clear documentation of functionality and permissions