← Back to Skills Marketplace
WordPress to Static Site
by
abhibavishi
· GitHub ↗
· v1.2.0
1002
Downloads
4
Stars
3
Active Installs
3
Versions
Install in OpenClaw
/install wp-to-static
Description
Convert a WordPress website to a static site and deploy to Cloudflare Pages. Mirrors the rendered HTML via SSH, extracts only referenced assets (shrinks 1.5GB+ to ~25MB), fixes URLs, self-hosts fonts, strips WordPress cruft, and deploys. Use when migrating a WordPress site to static hosting.
Usage Guidance
This skill appears to do what it says, but you should: (1) ensure your SSH key and known_hosts are correct and that you understand the remote commands that will run; (2) double-check the rsync exclude patterns and run the provided 'find' checks to confirm no PHP/config/.env files were copied before committing or pushing; (3) review the Git repo locally before pushing to GitHub to avoid accidentally committing secrets; (4) keep backups of the original site until the static deployment is validated; (5) prefer running these commands interactively yourself (the skill is instruction-only and model invocation is disabled) so you can confirm each step. If you need greater assurance, ask the skill author for a sample dry-run output or a checklist showing the exact files that will be transferred and excluded.
Capability Analysis
Type: OpenClaw Skill
Name: wp-to-static
Version: 1.2.0
The skill bundle is designed for a complex, high-privilege operation (migrating a WordPress site via SSH to static hosting). Despite requiring extensive permissions (SSH, file system, network access), the `SKILL.md` demonstrates an exceptionally strong focus on security. It explicitly defines and enforces numerous security best practices, including using `ssh-agent`, strict host key checking, comprehensive exclusion of sensitive files during rsync, multiple verification steps to prevent data leakage or accidental commits, and clear 'Safety Rules' for the agent. The instructions are transparent, directly align with the stated purpose, and include `disable-model-invocation: true`. There is no evidence of intentional malicious behavior, data exfiltration, persistence, or obfuscation.
Capability Assessment
Purpose & Capability
Requested binaries (ssh, ssh-agent, rsync, curl, git, gh, wrangler) and env vars (WP_SSH_*, WP_SITE_URL, WP_SITE_NAME) align with an SSH-based site mirror, selective rsync, GitHub repo creation, and Cloudflare Pages deployment. Minor note: the instructions use wget on the remote server (not required locally), which explains why wget is not in the local required-bins list.
Instruction Scope
The SKILL.md stays on-task (SSH to server, mirror rendered HTML, rsync back, strip server-side files, create repo, deploy). It explicitly forbids bypassing host-key verification and warns not to commit credentials. However, the workflow still transfers many site assets and runs rsync on plugin/theme dirs; the user must verify the exclude rules removed all server-side or sensitive files before creating a repo or deploying. The skill's instructions put manual checks on the user (verify no PHP/config files), which is appropriate but important to follow.
Install Mechanism
Instruction-only skill with no install spec and no downloads — lowest-risk install model. There is no distributed code fetched by the skill itself.
Credentials
Required environment variables are limited to SSH connection info and site identifiers needed for mirroring and naming. Optional CF_ACCOUNT_ID and GH visibility are reasonable. No unrelated cloud secrets or broad credentials are requested.
Persistence & Privilege
Skill is not always-enabled, and model invocation is disabled (disable-model-invocation: true), so it cannot autonomously run. It does not request persistent system-wide config changes or other skills' credentials.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install wp-to-static - After installation, invoke the skill by name or use
/wp-to-static - Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.2.0
Exclude PHP/config/sensitive files from rsync, add post-rsync verification, scrub build dir before git operations, verify no server-side files in public dir
v1.1.0
Security hardening: removed StrictHostKeyChecking=no, switched to ssh-agent for key handling (no passphrase env vars), added explicit gh/wrangler auth verification, added Security Model section
v1.0.0
Initial release: SSH mirror, asset extraction, URL rewriting, Google Fonts self-hosting, Cloudflare Pages deployment
Metadata
Frequently Asked Questions
What is WordPress to Static Site?
Convert a WordPress website to a static site and deploy to Cloudflare Pages. Mirrors the rendered HTML via SSH, extracts only referenced assets (shrinks 1.5GB+ to ~25MB), fixes URLs, self-hosts fonts, strips WordPress cruft, and deploys. Use when migrating a WordPress site to static hosting. It is an AI Agent Skill for Claude Code / OpenClaw, with 1002 downloads so far.
How do I install WordPress to Static Site?
Run "/install wp-to-static" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is WordPress to Static Site free?
Yes, WordPress to Static Site is completely free (open-source). You can download, install and use it at no cost.
Which platforms does WordPress to Static Site support?
WordPress to Static Site is cross-platform and runs anywhere OpenClaw / Claude Code is available (darwin, linux).
Who created WordPress to Static Site?
It is built and maintained by abhibavishi (@abhibavishi); the current version is v1.2.0.
More Skills