ClawHub

taskflow

v1.0.0

Use when work should span one or more detached tasks but still behave like one job with a single owner context. TaskFlow is the durable flow substrate under...

0· 35·0 current·0 all-time
by辉哥@1yihui

Install

OpenClaw Prompt Flow

Install with OpenClaw

Best for remote or guided setup. Copy the exact prompt, then paste it into OpenClaw for 1yihui/yihui-taskflow.

Previewing Install & Setup.
Prompt PreviewInstall & Setup
Install the skill "taskflow" (1yihui/yihui-taskflow) from ClawHub.
Skill page: https://clawhub.ai/1yihui/yihui-taskflow
Keep the work scoped to this skill only.
After install, inspect the skill metadata and help me finish setup.
Use only the metadata you can verify from ClawHub; do not invent missing requirements.
Ask before making any broader environment changes.

Command Line

CLI Commands

Use the direct CLI path if you want to install manually and keep every step visible.

OpenClaw CLI

Bare skill slug

openclaw skills install yihui-taskflow

ClawHub CLI

Package manager switcher

npx clawhub@latest install yihui-taskflow
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
medium confidence
Purpose & Capability
The SKILL.md documents a TaskFlow runtime API and explains flow lifecycle and methods; everything requested in the doc (flow IDs, session keys, stateJson, runTask, setWaiting, resume, finish, etc.) is consistent with a workflow/orchestration skill. However, the skill's source/homepage are missing which reduces transparency about who published it.
Instruction Scope
Instructions are scoped to orchestration APIs and do not instruct the agent to read arbitrary files, fetch unrelated network endpoints, or exfiltrate environment variables. It assumes the caller provides a trusted tool context (sessionKey/requesterOrigin) but does not itself request additional system access.
Install Mechanism
No install spec and no code files — instruction-only — so nothing is written to disk or downloaded by the skill itself.
Credentials
The skill declares no required environment variables, credentials, or config paths. The runtime examples reference session keys and childSessionKey that must be provided by the platform or calling code; that is reasonable for an orchestration runtime but worth verifying in your deployment.
Persistence & Privilege
always is false and the skill does not ask to modify other skills or global settings. It assumes access to the platform runtime APIs for TaskFlow but does not request elevated persistent privileges itself.
Assessment
This skill is an instruction-only description of a TaskFlow runtime API and is internally coherent. Before installing: (1) confirm you trust the publisher (source/homepage missing); (2) understand that it expects the host platform to supply sessionKey/requesterOrigin — ensure those session tokens won't be granted to untrusted callers; (3) test in a sandboxed environment since there is no code to audit beyond the docs; and (4) verify the referenced example files and runtime API (api.runtime.tasks.flow) actually exist in your platform so the skill won't be given unexpected permissions to obtain or bind session credentials.

Like a lobster shell, security has layers — review code before you run it.

Runtime requirements

🪝 Clawdis
latestvk97bee4btdf07svm52abrs8kcd85qvyb
35downloads
0stars
1versions
Updated 11h ago
v1.0.0
MIT-0
辉哥@1yihui
latest
Download

tags:

  • workflow
  • orchestration
  • task-management compatibility: openclaw license: MIT

TaskFlow

Use TaskFlow when a job needs to outlive one prompt or one detached run, but you still want one owner session, one return context, and one place to inspect or resume the work.

When to use it

  • Multi-step background work with one owner
  • Work that waits on detached ACP or subagent tasks
  • Jobs that may need to emit one clear update back to the owner
  • Jobs that need small persisted state between steps
  • Plugin or tool work that must survive restarts and revision conflicts cleanly

What TaskFlow owns

  • flow identity
  • owner session and requester origin
  • currentStep, stateJson, and waitJson
  • linked child tasks and their parent flow id
  • finish, fail, cancel, waiting, and blocked state
  • revision tracking for conflict-safe mutations

It does not own branching or business logic. Put that in Lobster, acpx, or the calling code.

Current runtime shape

Canonical plugin/runtime entrypoint:

  • api.runtime.tasks.flow
  • api.runtime.taskFlow still exists as an alias, but api.runtime.tasks.flow is the canonical shape

Binding:

  • api.runtime.tasks.flow.fromToolContext(ctx) when you already have trusted tool context with sessionKey
  • api.runtime.tasks.flow.bindSession({ sessionKey, requesterOrigin }) when your binding layer already resolved the session and delivery context

Managed-flow lifecycle:

  1. createManaged(...)
  2. runTask(...)
  3. setWaiting(...) when waiting on a person or an external system
  4. resume(...) when work can continue
  5. finish(...) or fail(...)
  6. requestCancel(...) or cancel(...) when the whole job should stop

Design constraints

  • Use managed TaskFlows when your code owns the orchestration.
  • One-task mirrored flows are created by core runtime for detached ACP/subagent work; this skill is mainly about managed flows.
  • Treat stateJson as the persisted state bag. There is no separate setFlowOutput or appendFlowOutput API.
  • Every mutating method after creation is revision-checked. Carry forward the latest flow.revision after each successful mutation.
  • runTask(...) links the child task to the flow. Use it instead of manually creating detached tasks when you want parent orchestration.

Example shape

const taskFlow = api.runtime.tasks.flow.fromToolContext(ctx);

const created = taskFlow.createManaged({
  controllerId: "my-plugin/inbox-triage",
  goal: "triage inbox",
  currentStep: "classify",
  stateJson: {
    businessThreads: [],
    personalItems: [],
    eodSummary: [],
  },
});

const classify = taskFlow.runTask({
  flowId: created.flowId,
  runtime: "acp",
  childSessionKey: "agent:main:subagent:classifier",
  runId: "inbox-classify-1",
  task: "Classify inbox messages",
  status: "running",
  startedAt: Date.now(),
  lastEventAt: Date.now(),
});

if (!classify.created) {
  throw new Error(classify.reason);
}

const waiting = taskFlow.setWaiting({
  flowId: created.flowId,
  expectedRevision: created.revision,
  currentStep: "await_business_reply",
  stateJson: {
    businessThreads: ["slack:thread-1"],
    personalItems: [],
    eodSummary: [],
  },
  waitJson: {
    kind: "reply",
    channel: "slack",
    threadKey: "slack:thread-1",
  },
});

if (!waiting.applied) {
  throw new Error(waiting.code);
}

const resumed = taskFlow.resume({
  flowId: waiting.flow.flowId,
  expectedRevision: waiting.flow.revision,
  status: "running",
  currentStep: "finalize",
  stateJson: waiting.flow.stateJson,
});

if (!resumed.applied) {
  throw new Error(resumed.code);
}

taskFlow.finish({
  flowId: resumed.flow.flowId,
  expectedRevision: resumed.flow.revision,
  stateJson: resumed.flow.stateJson,
});

Keep conditionals above the runtime

Use the flow runtime for state and task linkage. Keep decisions in the authoring layer:

  • business → post to Slack and wait
  • personal → notify the owner now
  • later → append to an end-of-day summary bucket

Operational pattern

  • Store only the minimum state needed to resume.
  • Put human-readable wait reasons in blockedSummary or structured wait metadata in waitJson.
  • Use getTaskSummary(flowId) when the orchestrator needs a compact health view of child work.
  • Use requestCancel(...) when a caller wants the flow to stop scheduling immediately.
  • Use cancel(...) when you also want active linked child tasks cancelled.

Examples

  • See skills/taskflow/examples/inbox-triage.lobster
  • See skills/taskflow/examples/pr-intake.lobster
  • See skills/taskflow-inbox-triage/SKILL.md for a concrete routing pattern

Comments

Loading comments...