← Back to Skills Marketplace
OpenClaw Safe Change Flow
by
1987566643
· GitHub ↗
· v1.1.0
· MIT-0
449
Downloads
0
Stars
1
Active Installs
10
Versions
Install in OpenClaw
/install openclaw-safe-change-flow
Description
Safe OpenClaw config change workflow with backup, minimal edits, validation, health checks, and rollback. Single-instance first; secondary instance optional.
Usage Guidance
This skill is coherent and appears to do what it says, but take these precautions before installing/using it: (1) Verify you have the OpenClaw CLI on PATH (openclaw status/gateway commands) because the script assumes it. (2) Inspect any edit scripts (edit-main.sh / edit-secondary.sh / underlying python scripts) before running — safe-change.sh will execute them with bash, so they can run arbitrary commands. (3) If you enable secondary checks, provide SECONDARY_TOKEN only when needed and keep it secret. (4) Be aware the script will restart the OpenClaw gateway and may call launchctl on macOS; run this in a maintenance window if production impact is possible. (5) Confirm backups are created in the expected path and test the rollback path in a safe environment before using in production.
Capability Analysis
Type: OpenClaw Skill
Name: openclaw-safe-change-flow
Version: 1.1.0
The skill bundle provides a legitimate safety-oriented workflow for managing OpenClaw configuration changes. It includes a bash script (safe-change.sh) that implements a robust backup-validate-rollback pattern and instructions (SKILL.md) that guide the AI agent to use this safer method instead of direct file edits. The code uses standard practices like 'set -euo pipefail' and timestamped backups, and there is no evidence of data exfiltration, credential theft, or malicious intent.
Capability Assessment
Purpose & Capability
The skill is aligned with its stated purpose (safe config changes and rollback). Minor inconsistency: the registry metadata lists no required binaries, but both SKILL.md and safe-change.sh assume an 'openclaw' CLI and standard UNIX tools (bash, cp, date, id, launchctl on macOS). This is expected for this task but the dependency on the OpenClaw CLI is implicit and should be confirmed before use.
Instruction Scope
SKILL.md and safe-change.sh stay within the stated scope: backup, run a provided edit script, validate (openclaw status/health), and rollback. The script intentionally executes user-provided scripts (bash "$MAIN_SCRIPT"), so those scripts can perform arbitrary actions — this is by design but means you must review the edit scripts before running. The script also restarts the gateway and optionally uses launchctl to kickstart a service (macOS-specific behavior).
Install Mechanism
Instruction-only skill with no install spec and a small included shell script. Nothing is downloaded or written to disk by an installer; the only file is safe-change.sh and it's executed locally — low install risk.
Credentials
No required credentials are declared. The script accepts optional environment overrides (SECONDARY_TOKEN, SECONDARY_URL, SECONDARY_HOME, MAIN_CFG) which are appropriate for the optional dual-instance flow. Requiring SECONDARY_TOKEN when using a secondary instance is reasonable and limited in scope.
Persistence & Privilege
The skill does not request persistent platform privileges (always:false). It does perform service restarts and writes/restores config backups under the user's home directory, which is appropriate for a config-change helper and limited to OpenClaw-related files.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install openclaw-safe-change-flow - After installation, invoke the skill by name or use
/openclaw-safe-change-flow - Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.1.0
Security hardening: remove inline command execution (`bash -lc`) and use script-file entrypoints only; require SECONDARY_TOKEN via environment variable.
v1.0.9
Fix internal path consistency: script defaults now use neutral secondary-instance paths to match docs.
v1.0.8
Use neutral secondary-instance path naming in docs (remove personal "wife" wording).
v1.0.7
Translate SKILL.md to English and keep the default convention to run config changes via safe-change.sh.
v1.0.6
Add an explicit agent execution convention: after installing this skill, OpenClaw should use safe-change.sh as the default entrypoint for configuration changes.
v1.0.5
新增 Agent 执行约定:安装本技能后,配置变更默认通过 safe-change.sh 入口执行。
v1.0.3
默认单实例(推荐);双实例改为可选增强。强化备份→最小修改→校验→失败回滚流程。
v1.0.4
Test publish with acceptLicenseTerms
v1.0.1
Add safe-change.sh automation script with backup, validation, and automatic rollback for main + wife instances.
v1.0.0
Initial release: backup-validate-healthcheck-rollback workflow for main + secondary OpenClaw instances.
Metadata
Frequently Asked Questions
What is OpenClaw Safe Change Flow?
Safe OpenClaw config change workflow with backup, minimal edits, validation, health checks, and rollback. Single-instance first; secondary instance optional. It is an AI Agent Skill for Claude Code / OpenClaw, with 449 downloads so far.
How do I install OpenClaw Safe Change Flow?
Run "/install openclaw-safe-change-flow" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is OpenClaw Safe Change Flow free?
Yes, OpenClaw Safe Change Flow is completely free, licensed under MIT-0. You can download, install and use it at no cost.
Which platforms does OpenClaw Safe Change Flow support?
OpenClaw Safe Change Flow is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created OpenClaw Safe Change Flow?
It is built and maintained by 1987566643 (@1987566643); the current version is v1.1.0.
More Skills