技能详情(站内镜像,无评论)
许可证:MIT-0
MIT-0 ·免费使用、修改和重新分发。无需归因。
版本:v1.1.0
统计:⭐ 0 · 270 · 1 current installs · 1 all-time installs
⭐ 0
安装量(当前) 1
🛡 VirusTotal :良性 · OpenClaw :良性
Package:1987566643/openclaw-safe-change-flow
安全扫描(ClawHub)
- VirusTotal :良性
- OpenClaw :良性
OpenClaw 评估
The skill's files and instructions are consistent with a safe change/rollback workflow for OpenClaw; it contains a helper script that makes backups, runs user-supplied edit scripts, validates, and rolls back on failure — nothing in the package appears disproportionate or unrelated to that purpose.
综合结论
This skill is coherent and appears to do what it says, but take these precautions before installing/using it: (1) Verify you have the OpenClaw CLI on PATH (openclaw status/gateway commands) because the script assumes it. (2) Inspect any edit scripts (edit-main.sh / edit-secondary.sh / underlying python scripts) before running — safe-change.sh will execute them with bash, so they can run arbitrary commands. (3) If you enable secondary checks, p…
安装(复制给龙虾 AI)
将下方整段复制到龙虾中文库对话中,由龙虾按 SKILL.md 完成安装。
请把本段交给龙虾中文库(龙虾 AI)执行:为本机安装 OpenClaw 技能「OpenClaw Safe Change Flow」。简介:Safe OpenClaw config change workflow with backup, minimal edits, validation, he…。
请 fetch 以下地址读取 SKILL.md 并按文档完成安装:https://raw.githubusercontent.com/openclaw/skills/refs/heads/main/skills/1987566643/openclaw-safe-change-flow/SKILL.md
(来源:yingzhi8.cn 技能库)SKILL.md
---
name: openclaw-safe-change-flow
description: Safe OpenClaw config change workflow with backup, minimal edits, validation, health checks, and rollback. Single-instance first; secondary instance optional.
---
# OpenClaw Safe Change Flow
Goal: **avoid outages, keep rollback ready, verify every change**.
Use **single-instance** mode by default. Secondary-instance checks are optional.
---
## Scope
### Default (recommended): single instance
- Main config: `~/.openclaw/openclaw.json`
### Optional (advanced): dual instance
- Secondary config: `~/.openclaw-secondary/openclaw.json` (or your custom path)
If you do not need high-availability validation, single-instance flow is enough.
---
## Required single-instance flow
1. **Backup first**
- Create timestamped backup: `*.bak.safe-YYYYmmdd-HHMMSS`
2. **Make minimal edits**
- Change only necessary keys
3. **Validate immediately**
- Run: `openclaw status --deep`
4. **Auto rollback on failure**
- Restore backup and restart gateway
5. **Confirm availability**
- Verify channels/interfaces respond correctly
---
## Agent execution convention (default behavior)
After this skill is installed, treat this as default policy for config changes:
- **Default entrypoint:** run config changes through `safe-change.sh`
- **Avoid direct edits + bare restart**
- **If user explicitly asks to bypass:** allow it, but warn about risk
Mental model:
- Before: edit config directly
- Now: create a small edit script and run `safe-change.sh --main-script ./edit-main.sh`
---
## Optional dual-instance enhancement
On top of single-instance flow, you may also verify a secondary instance:
- `OPENCLAW_HOME=<secondary-home> openclaw gateway health --url <secondary-url> --token "$SECONDARY_TOKEN"`
- If either instance validation fails, rollback
Use this only when change risk is high or HA checks are required.
---
## Automation script (v1.0.2+)
This skill includes `safe-change.sh` to enforce:
**backup → change → validate → rollback on failure**
### Recommended: single-instance usage
```bash
cat > ./edit-main.sh <<'SH'
#!/usr/bin/env bash
python3 edit_main.py
SH
chmod +x ./edit-main.sh
./safe-change.sh --main-script ./edit-main.sh
```
### Optional: dual-instance usage
```bash
cat > ./edit-main.sh <<'SH'
#!/usr/bin/env bash
python3 edit_main.py
SH
chmod +x ./edit-main.sh
cat > ./edit-secondary.sh <<'SH'
#!/usr/bin/env bash
python3 edit_secondary.py
SH
chmod +x ./edit-secondary.sh
export SECONDARY_TOKEN="<your-secondary-token>"
./safe-change.sh
--main-script ./edit-main.sh
--secondary-script ./edit-secondary.sh
```
When secondary checks are enabled, set `SECONDARY_TOKEN` as an environment variable.
---
## Safety rules
- Never hardcode tokens or secrets
- Validate before announcing success
- Restore service first, investigate later
- Always keep a recent known-good backup in production
---
## Manual quick template (single instance)
```bash
TS=$(date +%Y%m%d-%H%M%S)
cp ~/.openclaw/openclaw.json ~/.openclaw/openclaw.json.bak.safe-$TS
# ...apply minimal config edits...
openclaw status --deep
```
If validation fails:
```bash
cp ~/.openclaw/openclaw.json.bak.safe-$TS ~/.openclaw/openclaw.json
openclaw gateway restart
```