← Back to Skills Marketplace

Openclaw Migrate

Name: Openclaw Migrate
Author: haha8d

by haha8d · GitHub ↗ · v0.1.0

cross-platform ⚠ suspicious

294

Downloads

Stars

Active Installs

Versions

Install in OpenClaw

/install openclaw-migrate-2

Description

Migrate OpenClaw agents across platforms and servers, preserving identity, memory, config, and skills for deployment, backup, syncing, and upgrades.

Usage Guidance

Do not install and run this skill without reviewing and testing its scripts first. Specific recommendations: - Inspect scripts before use. export-agent.sh copies openclaw.json unchanged; sync-github.sh copies identity and memory files and will push them to whatever repo URL you provide. That can leak agent identity, long-term memory, API tokens, or PII. - If you plan to use the GitHub sync: run it against a disposable/private repo first. Check the created agent-backup contents locally before any git push. Be aware the script will try to initialize and push, and may attempt a force push if the first push fails. - The provided 'redaction' in sync-github.sh relies on jq and a simple string heuristic; do not assume it removes all secrets. Verify openclaw.json and any workspace files are sanitized manually before pushing. - The scripts assume paths like /home/node/.openclaw and tools (git, jq, openclaw CLI). Adjust paths or run inside a container that matches assumptions to avoid accidental reading of the wrong user's files. - Prefer using export-agent.sh to create a local export, review its manifest and restore.sh, and only transfer data after manual inspection and redaction. Rotate any credentials after migration and keep backups. - If you need safer behavior, modify the scripts to: (1) prompt before including MEMORY/IDENTITY files, (2) require an explicit --confirm-github flag before any network push, (3) add stricter redaction rules and fail-safe checks for jq/git availability. Confidence in this assessment is high because the repository and full scripts were available for review.

Capability Analysis

Type: OpenClaw Skill Name: openclaw-migrate-2 Version: 0.1.0 The skill bundle is designed for OpenClaw agent migration and backup, using standard shell commands and Git operations. While `scripts/export-agent.sh` copies the `openclaw.json` file (which may contain sensitive tokens) without sanitization, the `SKILL.md` explicitly warns the user to sanitize it manually. Furthermore, `scripts/sync-github.sh` demonstrates security consciousness by actively sanitizing `openclaw.json` using `jq` before pushing to a remote GitHub repository. There is no evidence of intentional data exfiltration, malicious execution, persistence mechanisms, or prompt injection attempts against the agent. The observed behaviors are consistent with the stated purpose of agent management.

Capability Assessment

✓ Purpose & Capability

Name/description (migrate OpenClaw agents, preserve identity/memory/config/skills) align with the shipped scripts and docs: export-agent.sh creates a packaged snapshot and restore.sh reinstalls it; sync-github.sh pushes a minimized backup to GitHub for versioned deployment. Using GitHub for 'versioned deployments' is explicitly recommended in SKILL.md and implemented in code, so capability matches purpose.

⚠ Instruction Scope

Scripts copy sensitive files (IDENTITY.md, USER.md, SOUL.md, MEMORY.md, workspace/memory, openclaw.json) and—if run—will push them to a remote Git repo. SKILL.md's security checklist instructs sanitizing openclaw.json, but export-agent.sh copies openclaw.json raw into the export (no sanitization). sync-github.sh attempts a JSON redaction using jq, but that relies on jq being present and uses a heuristic (string contains 'key'/'token'/'secret') which may miss other secrets or structured credentials. The instructions give the agent broad discretion to collect and transmit identity and memory files—exactly the sensitive material a user may not expect to be pushed to external remotes.

ℹ Install Mechanism

This is instruction-only plus shipped scripts (no package install). That minimizes install-time risk. However, scripts assume presence of external tools (git, jq, openclaw CLI, tar, scp) and particular filesystem layout (/home/node/.openclaw). Those prerequisites are not declared in SKILL.md or package.json. If these tools are missing the scripts may fail in unsafe ways (partial exports, incomplete redaction).

⚠ Credentials

The skill declares no required environment variables, but the code implicitly reads sensitive data from the host filesystem (openclaw.json, workspace files) and may place them on remote Git repositories. README/docker docs reference OPENCLAW_GATEWAY_TOKEN and OPENCLAW_MODEL_API_KEY for runtime containers; these are not declared as required but are relevant to the exported config. The sync script will attempt to push to a repo (including --force fallback) which is disproportionate if a user expects a local-only backup. Overall the data the scripts access (identity, memory, gateway tokens) is high-sensitivity and the skill does not explicitly require or document the credentials/tools it depends on.

ℹ Persistence & Privilege

The skill is not force-included (always:false) and does not modify other skills or global agent configuration. When run, scripts create temporary exports in /tmp and may write restore scripts into those export directories. The most significant persistent effect is that sync-github.sh can push (and in some code paths force-push) data to a remote repo, which could permanently expose or overwrite remote content—this is a behavioral privilege to consider but not an automatic platform-level elevation.

How to Use

Make sure OpenClaw is installed (local or Docker)
Run the install command in chat: /install openclaw-migrate-2
After installation, invoke the skill by name or use /openclaw-migrate-2
Provide required inputs per the skill's parameter spec and get structured output

Version History

v0.1.0

Initial release of agent-migrate for OpenClaw agent migration and deployment. - Provides scripts to export and import complete OpenClaw agent state (identity, memory, config, skills, extensions). - Supports cross-platform migrations: local-to-remote, dev-to-prod, Linux/macOS/WSL environments. - Enables backup, rollback, disaster recovery, and workspace syncing. - Includes workflows for transferring via SSH or GitHub and self-contained restore scripts. - Offers platform-specific advice and a security checklist for safe migrations.

Metadata

Slug openclaw-migrate-2

Version 0.1.0

License —

All-time Installs 0

Active Installs 0

Total Versions 1

Frequently Asked Questions

What is Openclaw Migrate?

Migrate OpenClaw agents across platforms and servers, preserving identity, memory, config, and skills for deployment, backup, syncing, and upgrades. It is an AI Agent Skill for Claude Code / OpenClaw, with 294 downloads so far.

How do I install Openclaw Migrate?

Run "/install openclaw-migrate-2" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is Openclaw Migrate free?

Yes, Openclaw Migrate is completely free (open-source). You can download, install and use it at no cost.

Which platforms does Openclaw Migrate support?

Openclaw Migrate is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).

Who created Openclaw Migrate?

It is built and maintained by haha8d (@haha8d); the current version is v0.1.0.

More Skills