个人中心
今日签到
私信列表
消息中心
搜索全站
q_code

扫码关注官方微信
cell_code

扫码下载APP
返回顶部
技能集市 > AI智能 > clawback
c

clawback

Backup and restore your OpenClaw workspace to GitHub

作者: admin | 来源: ClawHub
源自
ClawHub
版本
V 1.0.6
安全检测
已通过
464
下载量
0
收藏
概述
安装方式
版本历史

clawback

# ClawSync Backup and restore your OpenClaw workspace to GitHub. ## ⚠️ Security First This skill is designed with defense-in-depth. Please read carefully. ## What It Backs Up | Category | Files | Status | |----------|-------|--------| | **Identity Files** | AGENTS.md, SOUL.md, USER.md, TOOLS.md, IDENTITY.md, HEARTBEAT.md | ✅ Safe | | **Skills** | All from `$OPENCLAW/skills/` | ⚠️ Manual review | | **Scripts** | All from `$OPENCLAW/scripts/` | ⚠️ Manual review | ### Why Some Files Are Not Backed Up The following files are **NOT** backed up by design: - **SITES.md** — May contain API keys/secrets - **MEMORY.md** — May contain sensitive conversation data - Any file in `credentials/`, `.env`, `node_modules/` ## What It Excludes - ❌ API keys and tokens (any format) - ❌ Credentials folder - ❌ .env files - ❌ node_modules - ❌ .git directories - ❌ Nested git repositories - ❌ Files containing secrets (detected by regex) ## Secret Detection ClawSync scans for these secret patterns: - GitHub tokens (`ghp_*`) - OpenAI keys (`sk-*`) - Google API keys (`AIza*`) - Slack tokens (`xoxb-*`, `xoxp-*`) - AWS access keys (`AKIA*`) - JWTs and bearer tokens - Private keys (`-----BEGIN * PRIVATE KEY-----`) - High-entropy strings If any are detected → **backup aborts before push**. ## Environment Variables (Required) ```bash export GITHUB_TOKEN="ghp_xxxx" export BACKUP_REPO="username/repo-name" export OPENCLAW_WORKSPACE="${HOME}/openclaw-workspace" ``` ### 🔐 Recommended: Fine-Grained PAT For least privilege, use a GitHub Fine-Grained PAT: 1. Go to GitHub → Settings → Developer settings → Personal access tokens → Fine-grained tokens 2. Create new token with: - **Repository access**: Only `$BACKUP_REPO` - **Permissions**: Contents: Write 3. Use this token as `GITHUB_TOKEN` ## Quick Start ```bash git clone https://github.com/your-username/clawsync.git ~/clawsync cp .env.example .env # Edit .env with your values bash sync.sh ``` ## Features - **Pre-flight Check**: Validates required env vars before running - **Strict Whitelist**: Only copies explicitly allowed files - **Deny List**: Filters out .git, credentials, node_modules - **Secret Scrubbing**: Detects 100+ secret patterns, aborts if found - **Safe Restore**: Requires --force or confirmation before overwriting ## Safe Restore ```bash # With confirmation (default) bash restore.sh # Force mode (no prompt) bash restore.sh --force ``` ## Auth Uses gh CLI if available, falls back to token auth. ## Files - `sync.sh` - Backup script (ShellCheck compliant) - `restore.sh` - Restore script - `.env_example` - Template - `.gitignore` - Blocks secrets ## Development & Release ### Running Tests Locally ```bash # Set up test workspace mkdir -p /tmp/test-workspace echo "test" > /tmp/test-workspace/AGENTS.md echo "test" > /tmp/test-workspace/USER.md mkdir -p /tmp/test-workspace/skills /tmp/test-workspace/scripts # Run integration test export BACKUP_REPO="test/repo" export OPENCLAW_WORKSPACE="/tmp/test-workspace" export GITHUB_TOKEN="dummy" cd /tmp && rm -rf test-backup-repo && mkdir test-backup-repo cd test-backup-repo && git init cp ~/clawsync/sync.sh . bash sync.sh ``` ### Testing Secret Detection ```bash # Create a test file with a fake secret echo "My API key is ghp_test1234567890abcdefghijklmnopqrstuvwxyz" > /tmp/test-workspace/AGENTS.md # Run sync - should abort with error bash sync.sh # Expected output: "Error: Potential secret detected..." ``` ### Security Audit Test (Proves Non-Staged Detection) This test verifies the script catches secrets BEFORE they are staged: ```bash # Set up test workspace export BACKUP_REPO="test/repo" export OPENCLAW_WORKSPACE="/tmp/test-workspace" export GITHUB_TOKEN="dummy" # Create workspace with secret in a non-staged file mkdir -p /tmp/test-workspace echo "Real API key: sk-realapikey12345678901234567890" > /tmp/test-workspace/AGENTS.md # Copy sync.sh to temp backup dir cd /tmp && rm -rf audit-test && mkdir audit-test && cd audit-test git init cp ~/clawsync/sync.sh . # Run sync - should FAIL (catches non-staged secret) bash sync.sh # Expected: "Error: Potential secret detected in backup directory!" # This proves the pre-git-add scanning works ``` ### Publishing to ClawHub The CI runs on every push and pull request: 1. **ShellCheck** - Lints bash scripts 2. **Integration test** - Verifies backup/restore works To publish a new version: ```bash git add -A git commit -m "Release v1.0.x" git tag v1.0.x git push origin master --tags ``` CI will automatically: - Run tests - If tests pass and tag starts with `v*`, publish to ClawHub

标签

skill ai

通过对话安装

该技能支持在以下平台通过对话安装:

OpenClaw WorkBuddy QClaw Kimi Claude

方式一:安装 SkillHub 和技能

帮我安装 SkillHub 和 clawsync-1776419975 技能

方式二:设置 SkillHub 为优先技能安装源

设置 SkillHub 为我的优先技能安装源,然后帮我安装 clawsync-1776419975 技能

通过命令行安装

skillhub install clawsync-1776419975

下载 Zip 包

⬇ 下载 clawback v1.0.6

文件大小: 14.75 KB | 发布时间: 2026-4-17 18:44

v1.0.6 最新 2026-4-17 18:44
ClawSync 1.0.6

- Improved secret detection: now scans for secrets in backup directories before git add, catching non-staged secrets.
- Added a dedicated Security Audit Test example in docs to verify pre-staging secret detection.
- Updated documentation to clarify secret handling and expected script behavior.
- Minor changes in SITES.md, SKILL.md, sync.sh, and restore.sh for clearer communication and reproducible local testing.

相关推荐

s

self-improvement

Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Claude ('No, that's wrong...', 'Actually...'), (3) User requests a capability that doesn't exist, (4) An external API or tool fails, (5) Claude realizes its knowledge is outdated or incorrect, (6) A better approach is discovered for a recurring task. Also review learnings before major tasks.

⭐ 3209 ⬇ 392882
AI智能
s

self-improvement

Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Claude ('No, that's wrong...', 'Actually...'), (3) User requests a capability that doesn't exist, (4) An external API or tool fails, (5) Claude realizes its knowledge is outdated or incorrect, (6) A better approach is discovered for a recurring task. Also review learnings before major tasks.

⭐ 3209 ⬇ 392877
AI智能
s

self-improvement

Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Claude ('No, that's wrong...', 'Actually...'), (3) User requests a capability that doesn't exist, (4) An external API or tool fails, (5) Claude realizes its knowledge is outdated or incorrect, (6) A better approach is discovered for a recurring task. Also review learnings before major tasks.

⭐ 3195 ⬇ 389507
AI智能
s

self-improvement

Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Claude ('No, that's wrong...', 'Actually...'), (3) User requests a capability that doesn't exist, (4) An external API or tool fails, (5) Claude realizes its knowledge is outdated or incorrect, (6) A better approach is discovered for a recurring task. Also review learnings before major tasks.

⭐ 3177 ⬇ 386566
AI智能

多链集团旗下-闲社网

闲社网热线
免费联系电话
0527-80111111
            qqline

服务时间:周一到周日 8:00-24:00

  • 公众号
    闲社 闲社线报社区
关注闲社网
  • wxkf

    闲社在线客服

  • wx

    关注闲社网微信

  • app

    闲社网APP

Archiver·手机版·闲社网·闲社论坛·羊毛社区· 多链控股集团有限公司 · 苏ICP备2025199260号-1

Powered by Discuz! X5.0   © 2024-2025 闲社网·线报更新论坛·羊毛分享社区·http://xianshe.com

p2p_official_large
返回顶部