Skills openclaw-git-backup
Create, update, validate, or troubleshoot automated git backup workflows for OpenClaw repositories. Use when a user wants a scheduled commit-and-push backup job, wants commit messages to summarize added or modified or deleted files, needs git credential setup for HTTPS pushes, or needs to debug why an OpenClaw cron backup is not running or not pushing.
git clone https://github.com/openclaw/skills
T=$(mktemp -d) && git clone --depth=1 https://github.com/openclaw/skills "$T" && mkdir -p ~/.claude/skills && cp -r "$T/skills/blacktor-tor/openclaw-git-backup" ~/.claude/skills/openclaw-skills-openclaw-git-backup && rm -rf "$T"
T=$(mktemp -d) && git clone --depth=1 https://github.com/openclaw/skills "$T" && mkdir -p ~/.openclaw/skills && cp -r "$T/skills/blacktor-tor/openclaw-git-backup" ~/.openclaw/skills/openclaw-skills-openclaw-git-backup && rm -rf "$T"
skills/blacktor-tor/openclaw-git-backup/SKILL.mdOpenClaw Git Backup
Use this skill to build a reusable nightly git backup workflow for an OpenClaw repo.
What this workflow does:
- stages repo changes
- optionally excludes scheduler noise or other paths
- creates a commit only when tracked changes exist
- writes a commit subject with
counts+added ~modified -deleted - writes a commit body listing changed files
- still runs
even if there was no new commit, so older unpushed commits are flushedgit push - integrates with OpenClaw cron and should always be force-run once after setup or edits
Inputs to Confirm
Before changing anything, confirm these values:
- repo root, e.g.
<repo-root> - runtime script path, e.g.
<runtime-script> - timezone, e.g.
<timezone> - remote name, usually
origin - branch behavior: current branch or explicit branch
- exclude patterns, if any
- whether HTTPS token setup is needed
If the user already implied these values, proceed without turning it into an interview.
Defaults
Reasonable defaults for a fresh setup:
- remote:
origin - timezone:
UTC - author name:
OpenClaw Backup - author email:
backup@local - branch: current branch, else
when detachedmain - exclude patterns: none unless the repo has scheduler self-noise
Bundled Script
This skill includes
scripts/nightly_git_backup.shPrefer using the bundled script as the implementation source, then copy it into the runtime location the user wants the cron job to call.
Typical install step:
install -D -m 755 <skill-dir>/scripts/nightly_git_backup.sh <runtime-script> bash -n <runtime-script>
Configuration Model
The bundled script supports these env vars:
— defaultBACKUP_REMOTEorigin
— optional explicit target branchBACKUP_BRANCH
— defaultBACKUP_TZUTC
— defaultBACKUP_AUTHOR_NAMEOpenClaw Backup
— defaultBACKUP_AUTHOR_EMAILbackup@local
— comma-separated git pathspec exclude patterns, e.g.BACKUP_EXCLUDEScron,cron/**,.cache,.cache/**
The first positional argument is the repo path. If omitted, the script uses
BACKUP_REPORecommended Flow
1. Inspect current state
Check:
git -C <repo-root> rev-parse --show-toplevelgit -C <repo-root> status --short --branchgit -C <repo-root> remote -v
or equivalent cron listingopenclaw cron list
2. Install or update the runtime script
Copy the bundled script into the runtime path the cron job will execute.
3. Configure push auth only if needed
If HTTPS push is already working, leave auth alone.
If the user explicitly provides a GitHub HTTPS token, prefer repo-local credential storage instead of embedding credentials in the remote URL:
git -C <repo-root> config credential.helper 'store --file=<repo-root>/.git/credentials' git -C <repo-root> config credential.useHttpPath true printf 'protocol=https\nhost=github.com\npath=OWNER/REPO.git\nusername=x-access-token\npassword=TOKEN\n' | git -C <repo-root> credential approve chmod 600 <repo-root>/.git/credentials git -C <repo-root> ls-remote --heads <remote> <branch>
Rules:
- never write the token into the remote URL
- never store the real token inside this skill
- tighten credential file permissions to
600
4. Create or update the cron job
Read
references/cron-job-template.mdSet the job so it executes:
bash -lc '<runtime-script> <repo-root>'
Typical cron settings:
- isolated agentTurn
- low thinking
- timeout 600s
- silent delivery unless the user wants alerts
5. Force-run once immediately
Do not stop at “job created”. Always test the full path.
After force-run, check:
- latest commit subject
- latest commit body
git status --short --branch
if push is expectedgit rev-list --left-right --count <remote>/<branch>...HEAD
Validation Checklist
Script
bash -n <runtime-script>
Git
git -C <repo-root> status --short --branchgit -C <repo-root> remote -vgit -C <repo-root> ls-remote --heads <remote> <branch>
Cron
- list jobs
- force-run the backup job
- inspect recent run results
Expected Outcome
- if staged changes exist after exclusions, a new commit is created and pushed
- if no new changes exist, push still runs to flush older local commits
- exclude patterns prevent scheduler self-noise from generating fake backup commits
Commit Message Contract
The bundled script writes:
Subject
backup: snapshot YYYY-MM-DD HH:MM:SS +0000 | +A ~M -D
Body
Added(n) - ... Modified(n) - ... Deleted(n) - ... Renamed(n) - old -> new
Keep the body factual and file-oriented.
Common Pitfalls
Scheduler self-noise
Some repos contain scheduler state that changes every run. Exclude it explicitly with
BACKUP_EXCLUDESExample:
BACKUP_EXCLUDES='cron,cron/**'
Runtime state outside the repo
Git only backs up files inside the target repo. If a workflow also depends on directories outside the repo, they are not covered unless the user explicitly adds a second sync or mirrors them into the repo.
See
references/backup-scope.mdWrong success criteria
“Cron job exists” is not enough.
The real success condition is:
- force-run works
- commit format is correct
- push succeeds
- remote catches up
Output Style
When reporting back, keep it concrete:
- what was configured
- what was tested
- whether push worked
- what is still outside backup scope