← 返回 Skills 市场
OpenClaw Backup
作者
Don Zurbrick
· GitHub ↗
· v1.1.0
· MIT-0
194
总下载
0
收藏
0
当前安装
1
版本数
在 OpenClaw 中安装
/install openclaw-backup-zurbrick
功能描述
Encrypted backup and restore for OpenClaw agents. Creates two-tier archives: cloud-safe operational backups plus optional age-encrypted secrets for local rec...
安全使用建议
This package appears to be a genuine OpenClaw backup/restore toolkit, but note the following before installing or running it:
- Metadata mismatch: The registry claims no required binaries or env vars, but the scripts require tar and python3; many flows also require the openclaw CLI. Optional features require age (for secrets) and gh (for pushing to GitHub). Ensure those tools are installed and you understand which flows use them.
- GitHub push: push-to-github.sh uses your gh CLI and will create/push to a private repo under your authenticated GitHub account. Verify gh is authenticated to the account you intend and confirm the repo visibility and contents before pushing.
- Sensitive data access: Operational backups include $HOME/.openclaw/workspace and other agent files (workspace, memory, skills). Secrets (.env, agents/) are opt-in but if you enable secrets, confirm they are encrypted with age and that you control the age keys/passphrase files.
- Cron/scheduling: schedule.sh will create/replace an OpenClaw cron entry with the same name. This is expected for scheduled backups but is an impactful change — review the SYSTEM_EVENT text and cron parameters before enabling.
- Verification: Run the scripts in no-op / dry-run modes first (verify.sh, restore.sh --dry-run, monthly-drill.sh) on a test host to confirm behavior and to inspect what gets copied into backup archives.
Because the metadata understates runtime requirements, proceed cautiously: inspect the scripts locally, confirm your tooling (openclaw, gh, age, python3), and test on a non-production node before trusting automated or scheduled runs.
功能分析
Type: OpenClaw Skill
Name: openclaw-backup-zurbrick
Version: 1.1.0
The openclaw-backup skill bundle provides a robust and well-documented system for agent disaster recovery. It includes scripts for creating tiered backups (operational and secrets), verifying archive integrity via SHA-256 checksums, and performing atomic restores with built-in rollback mechanisms. Notable security features include automatic redaction of sensitive keys in configuration files (backup.sh), mandatory encryption using 'age' for secrets archives, and strict validation in the GitHub push script (push-to-github.sh) to prevent the upload of unencrypted credentials. The use of OpenClaw's cron system for scheduling is implemented according to platform standards without evidence of malicious intent.
能力评估
Purpose & Capability
The scripts and docs implement an OpenClaw backup/verify/restore workflow (operational vs secrets archives, manifests, scheduled drills, GitHub push). That aligns with the name/description. However the registry metadata claims no required binaries or env vars while the scripts clearly require tar, python3, and often openclaw; optional flows require age and gh. The lack of declared runtime requirements in metadata is an inconsistency that could mislead operators.
Instruction Scope
SKILL.md stays on-topic and instructs running the provided scripts and using references. The scripts stage and copy $HOME/.openclaw content (workspace, openclaw.json, cron/jobs.json) and optionally secrets (.env, agents/) which is appropriate for a backup tool. The push-to-github.sh flow uses the user's gh CLI and authenticated account — expected but high-impact if misused. No instructions attempt to read unrelated system secrets or exfiltrate data to third-party endpoints beyond GitHub (via gh) and only with the user's authenticated gh CLI.
Install Mechanism
No install spec is present (instruction-only for installation), so nothing is automatically downloaded or written by an installer. The risk is limited to running the included scripts. No remote download URLs or archive extraction from untrusted hosts are present in the package.
Credentials
Metadata lists zero required env vars/credentials, but the runtime code references optional env vars (AGE_RECIPIENT, AGE_PASSPHRASE_FILE, AGE_IDENTITY_FILE, OPENCLAW_DIR, BACKUP_DIR, CRON_NAME, etc.). The scripts also depend on the user's gh authentication and the openclaw CLI. Requesting or using age and gh is proportionate to the described secrets encryption and GitHub push features, but the metadata not declaring these dependencies is misleading and increases the chance an operator will run scripts without realizing which credentials/tools are used.
Persistence & Privilege
The skill is not always-enabled and does not request elevated platform privileges. It can create or replace OpenClaw cron entries (via openclaw cron create/delete) which is within the expected scope for scheduling backups but is an impactful operation — the scheduler behavior is documented in scripts. The skill does not modify other skills' configurations or system-wide agent settings beyond interacting with the user's OpenClaw cron API.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install openclaw-backup-zurbrick - 安装完成后,直接呼叫该 Skill 的名称或使用
/openclaw-backup-zurbrick触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.1.0
Leaned out the runtime skill, moved weekly/monthly/pre-change workflow detail into a focused reference, and tightened the public README around backup, verify, restore, and GitHub-safe archive flows.
元数据
常见问题
OpenClaw Backup 是什么?
Encrypted backup and restore for OpenClaw agents. Creates two-tier archives: cloud-safe operational backups plus optional age-encrypted secrets for local rec... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 194 次。
如何安装 OpenClaw Backup?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install openclaw-backup-zurbrick」即可一键安装,无需额外配置。
OpenClaw Backup 是免费的吗?
是的,OpenClaw Backup 完全免费,采用 MIT-0 许可证,可自由下载、安装和使用。
OpenClaw Backup 支持哪些平台?
OpenClaw Backup 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 OpenClaw Backup?
由 Don Zurbrick(@zurbrick)开发并维护,当前版本 v1.1.0。
推荐 Skills