← 返回 Skills 市场
OpenClaw Checkpoint - Personal AI Assistant Backup & Recovery (Github)
作者
Anthony Francis
· GitHub ↗
· v1.0.5
2779
总下载
2
收藏
10
当前安装
6
版本数
在 OpenClaw 中安装
/install openclaw-checkpoint
功能描述
Backup and restore OpenClaw workspace state and agents across machines using git. Enables disaster recovery by syncing SOUL.md, MEMORY.md, memory files, cron...
安全使用建议
This package is instruction-only and contains no scripts — it expects you to clone or download code from a third-party GitHub repository and run an install script (the README even suggests curl | bash). Before installing: (1) confirm the external GitHub repo and author are trustworthy; the registry lists 'Source: unknown' which is a red flag for provenance; (2) inspect the install script and any scripts/checkpoint* files locally before executing them — avoid blindly piping remote content to bash; (3) verify the repo's .gitignore and a dry-run of what will be committed, so secrets (API keys, .env files) are not accidentally pushed; (4) prefer SSH auth or a minimally-scoped GitHub token; (5) be aware the installer will modify your PATH and may add a user cron or launchd job for scheduled backups; (6) if you do want this functionality, consider cloning the repo yourself, reviewing all scripts, and only then running the setup commands. Because of the mismatch between claimed CLI tools and the absence of bundled code plus the recommended remote-install pattern, proceed cautiously and audit the external code before use.
功能分析
Type: OpenClaw Skill
Name: openclaw-checkpoint
Version: 1.0.5
The OpenClaw Checkpoint skill is designed for legitimate backup and restore operations, explicitly excluding sensitive data like API keys and warning users about private repositories. However, it is classified as 'suspicious' due to several high-risk capabilities inherent in its design: the recommended 'quick install' method involves `curl -fsSL ... | bash`, which is a significant supply chain risk. The skill also extensively uses powerful shell commands (`git`, `cp`, `rsync`, `sed`, `grep`, `crontab`, `launchctl`) for file system manipulation, network communication, and persistence (via cron/launchd). While these are necessary for its stated purpose, they represent a broad attack surface for potential shell injection vulnerabilities if not meticulously sanitized in the underlying scripts (which are not provided for analysis). There is no evidence of intentional malicious behavior like data exfiltration to unauthorized endpoints or obfuscation, but the combination of `curl | bash` and broad system interaction warrants caution.
能力评估
Purpose & Capability
The SKILL.md and README describe command-line tools (checkpoint, checkpoint-setup, checkpoint-backup, etc.) and reference scripts under scripts/checkpoint*; however the published skill bundle contains only INSTALL.md, README.md, and SKILL.md (no scripts or binaries). That means the claimed capabilities depend on fetching code from an external GitHub repo rather than being self-contained — an incoherence between what the skill claims and what the package actually provides.
Instruction Scope
The instructions are focused on backing up ~/.openclaw/workspace and ~/.openclaw/agents/, exporting cron jobs, initializing a git repo, and pushing to a remote GitHub repo — all within the declared purpose. However the SKILL.md explicitly instructs users to run remote install scripts (curl ... | bash) and to modify user launchd/crontab entries and PATH. Those install/run instructions are operationally necessary for the described feature but expand the skill's runtime effects (file writes, scheduling changes, network pushes). The doc also relies on the user's GitHub credentials or SSH key and the openclaw CLI/gateway; these are expected but worth verifying before use.
Install Mechanism
No install spec is bundled; the README/INSTALL recommend either git clone from https://github.com/AnthonyFrancis/openclaw-checkpoint or piping a raw.githubusercontent.com script to bash. Requiring users to fetch and execute remote scripts (curl|bash) increases risk unless the repository and install script are audited. The raw.githubusercontent.com host is common, but piping to a shell runs arbitrary remote code without local inspection. Also the registry metadata lists 'Source: unknown' and no homepage, so provenance is unclear.
Credentials
The skill declares no required environment variables and does not request unrelated credentials. The operational workflow legitimately needs Git, GitHub authentication (SSH or a PAT), and the openclaw CLI/gateway — these are proportional to a backup/restore tool. The README states that API keys and OAuth tokens are excluded from backups, which is appropriate, but users should verify .gitignore and commit behavior before first push.
Persistence & Privilege
The skill does not request always:true and operates at user level. It may create user launchd plist entries (macOS) or add a user cron job (Linux) when scheduling auto-backups; this is reasonable for an opt-in backup scheduler. It does not claim to install system-wide daemons or require root privileges.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install openclaw-checkpoint - 安装完成后,直接呼叫该 Skill 的名称或使用
/openclaw-checkpoint触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.5
openclaw-checkpoint v1.0.5
- Adds support for backing up and restoring agents (~/.openclaw/agents/) with workspace.
- Introduces new backup/restore flags: --workspace-only, --agents-only, and --agent <name> for granular control.
- Updates descriptions and help to reflect multi-agent support.
- checkpoint-status now reports agent backup status.
- More robust agent folder handling: skips gracefully if no agents found, strips nested .git dirs for portability.
v1.0.4
**Summary: Adds checkpoint-restore (checkpoint selection, rollback), help overview command, and improves disaster recovery workflows.**
- Introduced new checkpoint-restore command with interactive selection, checkpoint rollback options, --latest, and automatic cron job restore.
- Added checkpoint (help overview) command listing all available checkpoint commands and usage.
- Updated documentation to reflect new and renamed commands (e.g., checkpoint-restore replaces checkpoint-resume).
- Enhanced disaster recovery: easier onboarding/restore, explicit selection of backup to restore, and improved handling of uncommitted changes.
- checkpoint status, scheduling, backup, and setup usage unchanged. No code changes detected.
v1.0.3
Version 1.0.3
- No code or documentation changes detected in this release.
- All features and commands remain unchanged from the previous version.
- Internal SKILL.md or file structure is unmodified.
v1.0.2
openclaw-checkpoint 1.0.2
- Adds automatic backup of OpenClaw cron jobs to `memory/cron-jobs-backup.json` on each checkpoint-backup.
- Includes cron job sync as part of the backup and restore process (see `checkpoint-backup` and restore instructions).
- Updates command: `checkpoint` replaced by `checkpoint-backup` for explicit backup operation.
- Documentation in SKILL.md restructured and clarified for new and existing features.
- Description updated to reflect cron jobs and auto-backup improvements.
v1.0.1
Version 1.0.1
- Added interactive onboarding flow to checkpoint-resume for first-time users and new machines, including restore guidance and authentication setup.
- Improved checkpoint-resume to verify workspace state and guide through merge/replace options if local files exist.
- Updated documentation to clarify onboarding triggers and enhance restore instructions for new users.
v1.0.0
**Initial release of openclaw-checkpoint skill.**
- Provides backup and restore of OpenClaw workspace state across macOS and Linux machines using git and GitHub.
- Includes interactive onboarding (checkpoint-setup), manual and automated backup/restore commands, and health/status checks.
- Supports auto-backup scheduling (macOS launchd or Linux cron).
- Ensures key OpenClaw files (SOUL.md, MEMORY.md, config, scripts) are synced while excluding sensitive credentials.
- Offers setup/reset, authentication, schedule control, and safe migration commands for disaster recovery and workflow migration.
元数据
常见问题
OpenClaw Checkpoint - Personal AI Assistant Backup & Recovery (Github) 是什么?
Backup and restore OpenClaw workspace state and agents across machines using git. Enables disaster recovery by syncing SOUL.md, MEMORY.md, memory files, cron... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 2779 次。
如何安装 OpenClaw Checkpoint - Personal AI Assistant Backup & Recovery (Github)?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install openclaw-checkpoint」即可一键安装,无需额外配置。
OpenClaw Checkpoint - Personal AI Assistant Backup & Recovery (Github) 是免费的吗?
是的,OpenClaw Checkpoint - Personal AI Assistant Backup & Recovery (Github) 完全免费(开源免费),可自由下载、安装和使用。
OpenClaw Checkpoint - Personal AI Assistant Backup & Recovery (Github) 支持哪些平台?
OpenClaw Checkpoint - Personal AI Assistant Backup & Recovery (Github) 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 OpenClaw Checkpoint - Personal AI Assistant Backup & Recovery (Github)?
由 Anthony Francis(@anthonyfrancis)开发并维护,当前版本 v1.0.5。
推荐 Skills