shield_lock
JinDaGe
โ† Back to skills
extension
Category: Development & EngineeringNo API key required

Avenger Initiative

Encrypted GitHub backup and restore for any OpenClaw agent system. Creates branch-per-night backups with smart retention (7 daily, 8 weekly, 12 monthly branc...

personAuthor: asif2bdhubclawhub
open_in_newRepositorydownloadDownload package

๐Ÿ›ก๏ธ Avenger Initiative

Encrypted, branch-based GitHub backup and restore for any OpenClaw system.

When This Skill Triggers

  1. User says "setup avenger" / "configure backup" / "avenger init" โ†’ Run SETUP flow
  2. User says "avenger backup" / "backup system" / "push to vault" โ†’ Run BACKUP
  3. User says "restore from vault" / "avenger restore" โ†’ Run RESTORE flow
  4. User says "avenger status" / "vault status" โ†’ Show STATUS
  5. After any confirmed config change (gateway restart, config patch) โ†’ Run BACKUP silently

SETUP FLOW (Agent-Guided)

When setup is triggered, walk the user through it conversationally. Ask one question at a time.

Step 1 โ€” Ask for the vault repo

"To set up Avenger Initiative, I need a private GitHub repo to use as your vault. Have you created one already? If so, share the URL (e.g. https://github.com/yourname/my-vault). If not, I can help you create one."

Step 2 โ€” Handle the encryption key

"Your openclaw.json (which contains all API keys and bot tokens) will be encrypted with AES-256 before being pushed. Do you have an existing encryption key from a previous Avenger setup, or should I generate a new one?"

Step 3 โ€” Run setup

bash ~/.openclaw/workspace/skills/avenger-initiative/scripts/setup.sh \
  --repo <vault-url>

Step 4 โ€” Show key and insist they save it

"โš ๏ธ Your encryption key is below โ€” save it NOW in 1Password, Bitwarden, or a secure note. Without this key, your backup cannot be decrypted."

Wait for user to confirm "saved" before proceeding.

Step 5 โ€” Explain what will be backed up

  • ๐Ÿ” openclaw.json โ€” encrypted (all API keys, bot tokens, agent configs)
  • ๐Ÿง  All memory logs and workspace files (SOUL, IDENTITY, MEMORY, TOOLS)
  • ๐Ÿ‘ฅ Per-agent files for all agents
  • ๐Ÿ”ง All custom skills
  • ๐Ÿ“‹ Cron job definitions

Retention policy:

  • Daily โ†’ 7 days
  • Weekly โ†’ 8 weeks (created every Sunday)
  • Monthly โ†’ 12 months (created 1st of each month)

Step 6 โ€” Run first backup & install cron

bash ~/.openclaw/workspace/skills/avenger-initiative/scripts/backup.sh

BACKUP

bash ~/.openclaw/workspace/skills/avenger-initiative/scripts/backup.sh

Creates backup/daily/YYYY-MM-DD branch โ†’ merges to main โ†’ prunes per retention policy.
On Sundays: also creates backup/weekly/YYYY-WNN.
On 1st of month: also creates backup/monthly/YYYY-MM.

RESTORE

bash ~/.openclaw/workspace/skills/avenger-initiative/scripts/restore.sh

Supports --branch backup/daily/YYYY-MM-DD to restore from a specific snapshot.
Shows vault manifest, asks for confirmation, decrypts and restores all files.

After restore: openclaw gateway restart

STATUS

Check ~/.openclaw/workspace/memory/avenger-backup.log for last backup. Show timestamp, branch, and vault URL.

File Locations

~/.openclaw/
โ”œโ”€โ”€ credentials/
โ”‚   โ”œโ”€โ”€ avenger.key              โ† Encryption key (NEVER commit)
โ”‚   โ””โ”€โ”€ avenger-config.json     โ† Vault repo URL
โ””โ”€โ”€ workspace/skills/avenger-initiative/
    โ”œโ”€โ”€ SKILL.md
    โ”œโ”€โ”€ scripts/
    โ”‚   โ”œโ”€โ”€ backup.sh
    โ”‚   โ”œโ”€โ”€ restore.sh
    โ”‚   โ””โ”€โ”€ setup.sh
    โ””โ”€โ”€ references/
        โ””โ”€โ”€ security.md

Security Model

  • Vault repo should be private on GitHub
  • openclaw.json โ†’ AES-256-CBC encrypted (PBKDF2, 100k iterations)
  • All other files โ†’ plaintext (no secrets)
  • Key lives only on the machine and in the user's password manager

See references/security.md for threat model and key rotation.

More verified OpenClaw skills available at proskills.md