← Back to Skills Marketplace
484
Downloads
1
Stars
1
Active Installs
4
Versions
Install in OpenClaw
/install openclaw-backup-restore
Description
Backup and restore OpenClaw configuration, agents, sessions, and workspace to/from a private Git repository. Use when the user wants to manually trigger a ba...
Usage Guidance
Before installing or running this skill, make sure you: 1) Verify OPENCLAW_BACKUP_REPO is set to a private, access-controlled repository (do not push secrets to a public repo). 2) Confirm you have git, rsync, npm, and the OpenClaw CLI available on the machine; the skill metadata currently does not declare these requirements. 3) Understand that restore runs 'npm install' in any folder with package.json — that can run arbitrary install scripts from code stored in the backup. Consider disabling automatic npm installs (or review package.json files) when restoring. 4) Ensure your SSH/git credentials used for push/pull have appropriate scope and rotate credentials if you suspect exposure. 5) Test the backup/restore flow on a non-production copy first to validate behavior and the rsync/git semantics (watch for nested directory issues). 6) If you plan to proceed, update the skill metadata or documentation to list required binaries and clearly warn about the sensitivity of files under ~/.openclaw. If you want, provide the agent with a read-only or restricted backup repo and review the contents before running npm install or pushing sensitive files.
Capability Analysis
Type: OpenClaw Skill
Name: openclaw-backup-restore
Version: 1.0.3
The skill automates the backup and restoration of the entire OpenClaw environment, including sensitive configuration files, identity keys, and session memory, to a user-defined Git repository. While the scripts (scripts/backup.sh and scripts/restore.sh) are aligned with the stated purpose, they perform high-risk actions such as exfiltrating sensitive data to a remote endpoint and executing 'npm install' on restored files. This poses a significant risk of data exposure or supply chain compromise if the backup repository is not properly secured by the user.
Capability Assessment
Purpose & Capability
The skill's name/description match the included scripts: they back up ${HOME}/.openclaw to a Git repo and can restore it. However, the registry metadata claims no required binaries or envs even though the scripts require git, rsync, npm, and the OpenClaw CLI (openclaw). It also implicitly requires a working SSH/git auth setup for the remote repo. The missing required-tool declarations are an inconsistency.
Instruction Scope
SKILL.md and the scripts stay within the stated purpose (sync .openclaw to/from a Git repo). The restore script runs 'find ... -execdir npm install' which will execute package install scripts in restored directories (a legitimate restore step but a notable execution risk if the backup contains malicious package.json files). The scripts read OpenClaw config and operate on ${HOME}/.openclaw and ${HOME}/openclaw-backup — they will move potentially sensitive runtime/config/identity files to the configured remote, which is expected but requires caution.
Install Mechanism
No install spec (instruction-only) — no external archives are downloaded by the skill itself. The scripts are included in the skill bundle and will be executed by the agent when invoked. This is a low-risk install mechanism in the sense of remote code fetching, but the included scripts will perform network operations (git push/pull, npm install).
Credentials
The skill requests no environment variables in metadata, yet it depends on a user-configured OPENCLAW_BACKUP_REPO value in OpenClaw config and needs access to the user's SSH/git credentials and HOME. The scripts will read/write the entire ${HOME}/.openclaw (including identity/credentials files referenced in SKILL.md), then push them to the configured remote — this is functionally necessary but high-impact, so the omission in metadata and lack of explicit credential requirements is concerning.
Persistence & Privilege
always is false and the skill does not request persistent platform privileges or modify other skills. It does, however, read and write the user's OpenClaw runtime data and will perform autonomous git operations when invoked; that autonomy is platform-default and not by itself a flag here.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install openclaw-backup-restore - After installation, invoke the skill by name or use
/openclaw-backup-restore - Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.3
Exclude Playwright cache and Python cache files from backup; improve backup cleanliness.
v1.0.2
Translate .gitignore comments to English.
v1.0.1
Improve backup/restore scripts and refresh skill guidance.
v1.0.0
openclaw-backup-restore by git
Metadata
Frequently Asked Questions
What is OpenClaw Backup & Restore?
Backup and restore OpenClaw configuration, agents, sessions, and workspace to/from a private Git repository. Use when the user wants to manually trigger a ba... It is an AI Agent Skill for Claude Code / OpenClaw, with 484 downloads so far.
How do I install OpenClaw Backup & Restore?
Run "/install openclaw-backup-restore" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is OpenClaw Backup & Restore free?
Yes, OpenClaw Backup & Restore is completely free, licensed under MIT-0. You can download, install and use it at no cost.
Which platforms does OpenClaw Backup & Restore support?
OpenClaw Backup & Restore is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created OpenClaw Backup & Restore?
It is built and maintained by DarinRowe (@darinrowe); the current version is v1.0.3.
More Skills