← Back to Skills Marketplace
VPS Bootstrap
by
lolaopenclaw
· GitHub ↗
· v1.0.0
362
Downloads
1
Stars
0
Active Installs
1
Versions
Install in OpenClaw
/install vps-bootstrap
Description
Bootstrap a fresh VPS from zero to a fully operational OpenClaw deployment, with backup/restore and post-recovery verification. Use when setting up OpenClaw...
Usage Guidance
This script bundle appears to do what it says (system installs, OpenClaw install, backup/restore), but it will modify system configs and manage sensitive secrets. Before running: (1) review the scripts line-by-line — especially the curl | bash NodeSource step and the npm install -g openclaw; (2) back up existing ~/.gnupg, ~/.password-store, ~/.config/rclone and any keyrings because restore.sh can overwrite them; (3) remove or change the %no-protection flag in the GPG key params if you want a passphrase‑protected key; (4) run the bootstrap on a disposable/test VM first; (5) consider manually running the networked install commands after inspecting them rather than via the automated script; and (6) confirm you trust the source before allowing these high‑privilege operations.
Capability Analysis
Type: OpenClaw Skill
Name: vps-bootstrap
Version: 1.0.0
The skill bundle is classified as suspicious due to several high-risk operations, despite their stated legitimate purpose. The `bootstrap.sh` script uses `curl -fsSL ... | sudo -E bash -` to install Node.js, which is a powerful pattern that executes arbitrary code with root privileges from a remote source, posing a supply chain risk if the source is compromised. Additionally, the `restore.sh` script performs extensive file system manipulation, copying potentially sensitive data (GPG keys, password store, `.env` files, OAuth credentials) from a user-provided backup to critical system locations. While intended for legitimate backup restoration, this capability could be abused if a malicious backup file is supplied, leading to potential system compromise or data corruption. No direct evidence of intentional malicious behavior (e.g., exfiltration to unauthorized endpoints, stealthy backdoors) was found, but these capabilities represent significant vulnerabilities.
Capability Assessment
Purpose & Capability
The name/description match what the files do: install system packages, Node.js, Chrome, OpenClaw, configure firewall/fail2ban/SSH, enable gateway services, and provide backup/restore and verification. Required privileges (root/sudo) and target paths (~/.openclaw, /etc/ssh, /etc/fail2ban, /usr/local/bin) are consistent with a bootstrap/restore tool.
Instruction Scope
SKILL.md accurately describes the scripts, but the scripts perform broad system changes and handle secrets. Notable issues: bootstrap.sh generates a GPG key using %no-protection (creates an unencrypted private key), which weakens secret protection and contradicts the SKILL.md security claim. restore.sh will overwrite ~/.gnupg, ~/.password-store, rclone config, keyrings, and other credential files from the backup tarball — expected for a restore, but potentially destructive and sensitive. The scripts modify system SSH configuration and enable system services without finer-grained prompts. These behaviors expand the scope beyond a simple installer and require explicit user consent and backups of existing keys/configs.
Install Mechanism
There is no packaged install spec; the scripts perform network installs from recognizable hosts (nodesource setup script piped to bash, dl.google.com for Chrome, npm install -g openclaw). These are common for bootstrappers but piping a remote script into sudo bash is a moderate risk pattern — the NodeSource script is from an expected host, but running it without inspection can execute arbitrary code on the machine.
Credentials
The skill declares no required env vars or credentials, which matches the bundle. It requires sudo/root to perform system changes — appropriate for the task. However the scripts create and restore sensitive artifacts (GPG keys, password store, rclone config, keyrings, OAuth credentials) and will copy them into the user's home (potentially overwriting existing secrets). That handling of credentials is proportionate to backup/restore, but it's high sensitivity and should be treated with caution.
Persistence & Privilege
The skill does not request always:true and does not alter other skills. It does enable user linger and installs/enables an OpenClaw gateway service and hooks, and edits system services/configs (sshd_config, fail2ban, UFW), which are appropriate for a bootstrapper but are high‑privilege operations — ensure you run this only on a machine where those changes are acceptable.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install vps-bootstrap - After installation, invoke the skill by name or use
/vps-bootstrap - Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.0
Initial release: bootstrap.sh + restore.sh + verify.sh for full VPS deployment and disaster recovery
Metadata
Frequently Asked Questions
What is VPS Bootstrap?
Bootstrap a fresh VPS from zero to a fully operational OpenClaw deployment, with backup/restore and post-recovery verification. Use when setting up OpenClaw... It is an AI Agent Skill for Claude Code / OpenClaw, with 362 downloads so far.
How do I install VPS Bootstrap?
Run "/install vps-bootstrap" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is VPS Bootstrap free?
Yes, VPS Bootstrap is completely free (open-source). You can download, install and use it at no cost.
Which platforms does VPS Bootstrap support?
VPS Bootstrap is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created VPS Bootstrap?
It is built and maintained by lolaopenclaw (@lolaopenclaw); the current version is v1.0.0.
More Skills