openclaw/docs/session-tool.md

---
summary: "Agent session tools for listing sessions, fetching history, and sending cross-session messages"
read_when:
  - Adding or modifying session tools
---

# Session Tools

Goal: small, hard-to-misuse tool surface so agents can list sessions, fetch history, and send to another session.

## Tool Names
- `sessions_list`
- `sessions_history`
- `sessions_send`

## Key Model
- Main direct chat bucket is always the literal key `"main"`.
- Group chats use `surface:group:<id>` or `surface:channel:<id>`.
- Cron jobs use `cron:<job.id>`.
- Hooks use `hook:<uuid>` unless explicitly set.
- Node bridge uses `node-<nodeId>` unless explicitly set.

`global` and `unknown` are internal-only and never listed. If `session.scope = "global"`, we alias it to `main` for all tools so callers never see `global`.

## sessions_list
List sessions as an array of rows.

Parameters:
- `kinds?: string[]` filter: any of `"main" | "group" | "cron" | "hook" | "node" | "other"`
- `limit?: number` max rows (default: server default, clamp e.g. 200)
- `activeMinutes?: number` only sessions updated within N minutes
- `messageLimit?: number` 0 = no messages (default 0); >0 = include last N messages

Behavior:
- `messageLimit > 0` fetches `chat.history` per session and includes the last N messages.
- Tool results are filtered out in list output; use `sessions_history` for tool messages.

Row shape (JSON):
- `key`: session key (string)
- `kind`: `main | group | cron | hook | node | other`
- `provider`: `whatsapp | telegram | discord | signal | imessage | webchat | internal | unknown`
- `displayName` (group display label if available)
- `updatedAt` (ms)
- `sessionId`
- `model`, `contextTokens`, `totalTokens`
- `thinkingLevel`, `verboseLevel`, `systemSent`, `abortedLastRun`
- `sendPolicy` (session override if set)
- `lastChannel`, `lastTo`
- `transcriptPath` (best-effort path derived from store dir + sessionId)
- `messages?` (only when `messageLimit > 0`)

## sessions_history
Fetch transcript for one session.

Parameters:
- `sessionKey` (required)
- `limit?: number` max messages (server clamps)
- `includeTools?: boolean` (default false)

Behavior:
- `includeTools=false` filters `role: "toolResult"` messages.
- Returns messages array in the raw transcript format.

## sessions_send
Send a message into another session.

Parameters:
- `sessionKey` (required)
- `message` (required)
- `timeoutSeconds?: number` (default >0; 0 = fire-and-forget)

Behavior:
- `timeoutSeconds = 0`: enqueue and return `{ runId, status: "accepted" }`.
- `timeoutSeconds > 0`: wait up to N seconds for completion, then return `{ runId, status: "ok", reply }`.
- If wait times out: `{ runId, status: "timeout", error }`. Run continues; call `sessions_history` later.
- If the run fails: `{ runId, status: "error", error }`.
- Waits via gateway `agent.wait` (server-side) so reconnects don't drop the wait.
- Agent-to-agent message context is injected for the primary run.
- After the primary run completes, Clawdis runs a **reply-back loop**:
  - Round 2+ alternates between requester and target agents.
  - Reply exactly `REPLY_SKIP` to stop the ping‑pong.
  - Max turns is `session.agentToAgent.maxPingPongTurns` (0–5, default 5).
- Once the loop ends, Clawdis runs the **agent‑to‑agent announce step** (target agent only):
  - Reply exactly `ANNOUNCE_SKIP` to stay silent.
  - Any other reply is sent to the target channel.
  - Announce step includes the original request + round‑1 reply + latest ping‑pong reply.

## Provider Field
- For groups, `provider` is the `surface` recorded on the session entry.
- For direct chats, `provider` maps from `lastChannel`.
- For cron/hook/node, `provider` is `internal`.
- If missing, `provider` is `unknown`.

## Security / Send Policy
Policy-based blocking by surface/chat type (not per session id).

```json
{
  "session": {
    "sendPolicy": {
      "rules": [
        {
          "match": { "surface": "discord", "chatType": "group" },
          "action": "deny"
        }
      ],
      "default": "allow"
    }
  }
}
```

Runtime override (per session entry):
- `sendPolicy: "allow" | "deny"` (unset = inherit config)
- Settable via `sessions.patch` or owner-only `/send on|off|inherit`.

Enforcement points:
- `chat.send` / `agent` (gateway)
- auto-reply delivery logic
-												feat: add sessions tools and send policy

											
										
										
											2026-01-03 23:44:38 +01:00
+								---
 								summary: "Agent session tools for listing sessions, fetching history, and sending cross-session messages"
 								read_when:
 								  - Adding or modifying session tools
 								---
 								# Session Tools
 								Goal: small, hard-to-misuse tool surface so agents can list sessions, fetch history, and send to another session.
 								## Tool Names
 								- `sessions_list`
 								- `sessions_history`
 								- `sessions_send`
 								## Key Model
 								- Main direct chat bucket is always the literal key `"main"`.
 								- Group chats use `surface:group:<id>` or `surface:channel:<id>`.
 								- Cron jobs use `cron:<job.id>`.
 								- Hooks use `hook:<uuid>` unless explicitly set.
 								- Node bridge uses `node-<nodeId>` unless explicitly set.
 								`global` and `unknown` are internal-only and never listed. If `session.scope = "global"`, we alias it to `main` for all tools so callers never see `global`.
 								## sessions_list
 								List sessions as an array of rows.
 								Parameters:
 								- `kinds?: string[]` filter: any of `"main" | "group" | "cron" | "hook" | "node" | "other"`
 								- `limit?: number` max rows (default: server default, clamp e.g. 200)
 								- `activeMinutes?: number` only sessions updated within N minutes
 								- `messageLimit?: number` 0 = no messages (default 0); >0 = include last N messages
 								Behavior:
 								- `messageLimit > 0` fetches `chat.history` per session and includes the last N messages.
 								- Tool results are filtered out in list output; use `sessions_history` for tool messages.
 								Row shape (JSON):
 								- `key`: session key (string)
 								- `kind`: `main | group | cron | hook | node | other`
 								- `provider`: `whatsapp | telegram | discord | signal | imessage | webchat | internal | unknown`
 								- `displayName` (group display label if available)
 								- `updatedAt` (ms)
 								- `sessionId`
 								- `model`, `contextTokens`, `totalTokens`
 								- `thinkingLevel`, `verboseLevel`, `systemSent`, `abortedLastRun`
 								- `sendPolicy` (session override if set)
 								- `lastChannel`, `lastTo`
 								- `transcriptPath` (best-effort path derived from store dir + sessionId)
 								- `messages?` (only when `messageLimit > 0`)
 								## sessions_history
 								Fetch transcript for one session.
 								Parameters:
 								- `sessionKey` (required)
 								- `limit?: number` max messages (server clamps)
 								- `includeTools?: boolean` (default false)
 								Behavior:
 								- `includeTools=false` filters `role: "toolResult"` messages.
 								- Returns messages array in the raw transcript format.
 								## sessions_send
 								Send a message into another session.
 								Parameters:
 								- `sessionKey` (required)
 								- `message` (required)
 								- `timeoutSeconds?: number` (default >0; 0 = fire-and-forget)
 								Behavior:
 								- `timeoutSeconds = 0`: enqueue and return `{ runId, status: "accepted" }`.
 								- `timeoutSeconds > 0`: wait up to N seconds for completion, then return `{ runId, status: "ok", reply }`.
 								- If wait times out: `{ runId, status: "timeout", error }`. Run continues; call `sessions_history` later.
 								- If the run fails: `{ runId, status: "error", error }`.
-												fix: wait on agent.wait for sessions_send

											
										
										
											2026-01-04 01:15:23 +01:00
+								- Waits via gateway `agent.wait` (server-side) so reconnects don't drop the wait.
-												feat(sessions): add agent-to-agent post step

											
										
										
											2026-01-04 03:04:55 +01:00
+								- Agent-to-agent message context is injected for the primary run.
-												feat(sessions): add agent-to-agent ping-pong

											
										
										
											2026-01-04 03:37:44 +01:00
+								- After the primary run completes, Clawdis runs a **reply-back loop**:
 								  - Round 2+ alternates between requester and target agents.
 								  - Reply exactly `REPLY_SKIP` to stop the ping‑pong.
 								  - Max turns is `session.agentToAgent.maxPingPongTurns` (0–5, default 5).
 								- Once the loop ends, Clawdis runs the **agent‑to‑agent announce step** (target agent only):
 								  - Reply exactly `ANNOUNCE_SKIP` to stay silent.
-												feat(sessions): add agent-to-agent post step

											
										
										
											2026-01-04 03:04:55 +01:00
+								  - Any other reply is sent to the target channel.
-												feat(sessions): add agent-to-agent ping-pong

											
										
										
											2026-01-04 03:37:44 +01:00
+								  - Announce step includes the original request + round‑1 reply + latest ping‑pong reply.
-												feat: add sessions tools and send policy

											
										
										
											2026-01-03 23:44:38 +01:00
 								## Provider Field
 								- For groups, `provider` is the `surface` recorded on the session entry.
 								- For direct chats, `provider` maps from `lastChannel`.
 								- For cron/hook/node, `provider` is `internal`.
 								- If missing, `provider` is `unknown`.
 								## Security / Send Policy
 								Policy-based blocking by surface/chat type (not per session id).
 								```json
 								{
 								  "session": {
 								    "sendPolicy": {
 								      "rules": [
 								        {
 								          "match": { "surface": "discord", "chatType": "group" },
 								          "action": "deny"
 								        }
 								      ],
 								      "default": "allow"
 								    }
 								  }
 								}
 								```
 								Runtime override (per session entry):
 								- `sendPolicy: "allow" | "deny"` (unset = inherit config)
 								- Settable via `sessions.patch` or owner-only `/send on|off|inherit`.
 								Enforcement points:
 								- `chat.send` / `agent` (gateway)
 								- auto-reply delivery logic