← 返回 Skills 市场
haha8d

Openclaw Migrate

作者 haha8d · GitHub ↗ · v0.1.0
cross-platform ⚠ suspicious
294
总下载
0
收藏
0
当前安装
1
版本数
在 OpenClaw 中安装
/install openclaw-migrate-2
功能描述
Migrate OpenClaw agents across platforms and servers, preserving identity, memory, config, and skills for deployment, backup, syncing, and upgrades.
安全使用建议
Do not install and run this skill without reviewing and testing its scripts first. Specific recommendations: - Inspect scripts before use. export-agent.sh copies openclaw.json unchanged; sync-github.sh copies identity and memory files and will push them to whatever repo URL you provide. That can leak agent identity, long-term memory, API tokens, or PII. - If you plan to use the GitHub sync: run it against a disposable/private repo first. Check the created agent-backup contents locally before any git push. Be aware the script will try to initialize and push, and may attempt a force push if the first push fails. - The provided 'redaction' in sync-github.sh relies on jq and a simple string heuristic; do not assume it removes all secrets. Verify openclaw.json and any workspace files are sanitized manually before pushing. - The scripts assume paths like /home/node/.openclaw and tools (git, jq, openclaw CLI). Adjust paths or run inside a container that matches assumptions to avoid accidental reading of the wrong user's files. - Prefer using export-agent.sh to create a local export, review its manifest and restore.sh, and only transfer data after manual inspection and redaction. Rotate any credentials after migration and keep backups. - If you need safer behavior, modify the scripts to: (1) prompt before including MEMORY/IDENTITY files, (2) require an explicit --confirm-github flag before any network push, (3) add stricter redaction rules and fail-safe checks for jq/git availability. Confidence in this assessment is high because the repository and full scripts were available for review.
功能分析
Type: OpenClaw Skill Name: openclaw-migrate-2 Version: 0.1.0 The skill bundle is designed for OpenClaw agent migration and backup, using standard shell commands and Git operations. While `scripts/export-agent.sh` copies the `openclaw.json` file (which may contain sensitive tokens) without sanitization, the `SKILL.md` explicitly warns the user to sanitize it manually. Furthermore, `scripts/sync-github.sh` demonstrates security consciousness by actively sanitizing `openclaw.json` using `jq` before pushing to a remote GitHub repository. There is no evidence of intentional data exfiltration, malicious execution, persistence mechanisms, or prompt injection attempts against the agent. The observed behaviors are consistent with the stated purpose of agent management.
能力评估
Purpose & Capability
Name/description (migrate OpenClaw agents, preserve identity/memory/config/skills) align with the shipped scripts and docs: export-agent.sh creates a packaged snapshot and restore.sh reinstalls it; sync-github.sh pushes a minimized backup to GitHub for versioned deployment. Using GitHub for 'versioned deployments' is explicitly recommended in SKILL.md and implemented in code, so capability matches purpose.
Instruction Scope
Scripts copy sensitive files (IDENTITY.md, USER.md, SOUL.md, MEMORY.md, workspace/memory, openclaw.json) and—if run—will push them to a remote Git repo. SKILL.md's security checklist instructs sanitizing openclaw.json, but export-agent.sh copies openclaw.json raw into the export (no sanitization). sync-github.sh attempts a JSON redaction using jq, but that relies on jq being present and uses a heuristic (string contains 'key'/'token'/'secret') which may miss other secrets or structured credentials. The instructions give the agent broad discretion to collect and transmit identity and memory files—exactly the sensitive material a user may not expect to be pushed to external remotes.
Install Mechanism
This is instruction-only plus shipped scripts (no package install). That minimizes install-time risk. However, scripts assume presence of external tools (git, jq, openclaw CLI, tar, scp) and particular filesystem layout (/home/node/.openclaw). Those prerequisites are not declared in SKILL.md or package.json. If these tools are missing the scripts may fail in unsafe ways (partial exports, incomplete redaction).
Credentials
The skill declares no required environment variables, but the code implicitly reads sensitive data from the host filesystem (openclaw.json, workspace files) and may place them on remote Git repositories. README/docker docs reference OPENCLAW_GATEWAY_TOKEN and OPENCLAW_MODEL_API_KEY for runtime containers; these are not declared as required but are relevant to the exported config. The sync script will attempt to push to a repo (including --force fallback) which is disproportionate if a user expects a local-only backup. Overall the data the scripts access (identity, memory, gateway tokens) is high-sensitivity and the skill does not explicitly require or document the credentials/tools it depends on.
Persistence & Privilege
The skill is not force-included (always:false) and does not modify other skills or global agent configuration. When run, scripts create temporary exports in /tmp and may write restore scripts into those export directories. The most significant persistent effect is that sync-github.sh can push (and in some code paths force-push) data to a remote repo, which could permanently expose or overwrite remote content—this is a behavioral privilege to consider but not an automatic platform-level elevation.
如何使用
  1. 确保已安装 OpenClaw(本地或 Docker 部署)
  2. 在对话框中输入安装命令:/install openclaw-migrate-2
  3. 安装完成后,直接呼叫该 Skill 的名称或使用 /openclaw-migrate-2 触发
  4. 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v0.1.0
Initial release of agent-migrate for OpenClaw agent migration and deployment. - Provides scripts to export and import complete OpenClaw agent state (identity, memory, config, skills, extensions). - Supports cross-platform migrations: local-to-remote, dev-to-prod, Linux/macOS/WSL environments. - Enables backup, rollback, disaster recovery, and workspace syncing. - Includes workflows for transferring via SSH or GitHub and self-contained restore scripts. - Offers platform-specific advice and a security checklist for safe migrations.
元数据
Slug openclaw-migrate-2
版本 0.1.0
许可证
累计安装 0
当前安装数 0
历史版本数 1
常见问题

Openclaw Migrate 是什么?

Migrate OpenClaw agents across platforms and servers, preserving identity, memory, config, and skills for deployment, backup, syncing, and upgrades. 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 294 次。

如何安装 Openclaw Migrate?

在 OpenClaw 或 Claude Code 对话框中运行命令「/install openclaw-migrate-2」即可一键安装,无需额外配置。

Openclaw Migrate 是免费的吗?

是的,Openclaw Migrate 完全免费(开源免费),可自由下载、安装和使用。

Openclaw Migrate 支持哪些平台?

Openclaw Migrate 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。

谁开发了 Openclaw Migrate?

由 haha8d(@haha8d)开发并维护,当前版本 v0.1.0。

推荐 Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191113 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 留言讨论