Openclaw Workspace Pro

v1.0.0

Sets up a production-ready OpenClaw workspace with artifact workflows, secure secrets, memory compaction, and long-running agent patterns via one command.

⭐ 2· 739·5 current·5 all-time

by@eugene9d

Security Scan

VirusTotal

Benign

View report →

OpenClaw

Benign

high confidence

✓

Purpose & Capability

Name/description promise a production workspace and the package provides templates, docs, and an install.sh that creates the directory structure, copies .env.example, .gitignore and docs, and appends guidance to AGENTS.md/TOOLS.md. All requested artifacts match the stated purpose; no unrelated credentials or external services are required by the package itself.

✓

Instruction Scope

SKILL.md instructs cloning the repo and running ./install.sh (or using clawhub). The instructions are focused on creating folders, copying templates, and adding documentation. They do not instruct reading unrelated system files, contacting external endpoints, or exfiltrating data.

ℹ

Install Mechanism

Install is a bundled shell script (install.sh) that runs locally and writes files under /data/.openclaw/workspace by default. This is a typical, low-risk install method, but it will modify workspace files and append to AGENTS.md/TOOLS.md when present. No downloads from untrusted URLs or extraction of remote archives are performed.

✓

Credentials

The skill declares no required env vars or credentials. It creates a .env template for user-populated secrets (which is appropriate for secrets management). There are no demands for unrelated secrets or high-privilege tokens.

✓

Persistence & Privilege

The skill is not always-enabled and does not request persistent system-wide privileges. It only writes files into the workspace and creates backups for AGENTS.md/TOOLS.md. It does not modify other skills' configurations or request permanent agent-level privileges.

Assessment

This package appears coherent and low-risk, but take these precautions before installing: 1) Verify the repository source (https://github.com/Eugene9D/openclaw-workspace-pro) and inspect templates (templates/*) for any content you don't want added. 2) Run the installer in a test or staging workspace first (not a production workspace) to confirm behaviour and backups. 3) Back up your existing /data/.openclaw/workspace before running install.sh (install will write files there and append to AGENTS.md/TOOLS.md). 4) Review the created .env template and never paste secrets into docs; populate .env manually and keep it gitignored. 5) Note the network allowlist guidance in TOOLS-additions.md and customize it; the templates include a permissive set of allowed domains you should tailor to your environment. 6) Run the installer as an unprivileged user where possible (avoid running as root) so accidental wide filesystem changes are limited. 7) If you want to limit agent autonomy, remember skills can be invoked by agents by default—consider restricting autonomous invocation on your platform if you have strict controls. Overall the package is consistent with its stated purpose; the remaining steps are standard operational hygiene.

Like a lobster shell, security has layers — review code before you run it.

latestvk971cnwv30d7b0j4ewae1gkr99815bn2

739downloads

2stars

1versions

Updated 1mo ago

v1.0.0

MIT-0

OpenClaw Workspace Pro

Enterprise workspace setup for long-running OpenClaw agents.

What It Does

Transforms your OpenClaw workspace with production-ready patterns:

🗂 Artifact Workflow - Standardized output structure for reports, code, data, and exports
🔒 Secrets Management - Secure .env pattern, removes plaintext credentials
🧠 Memory Compaction - Prevents context bloat with systematic archival workflow
📦 Long-Running Patterns - Container reuse, checkpoint strategy, continuity protocols
🛡 Security Baseline - Network allowlists, safe credential handling

Based on OpenAI's Shell + Skills + Compaction best practices.

Installation

clawhub install openclaw-workspace-pro

Or manual:

cd /data/.openclaw/workspace
git clone https://github.com/Eugene9D/openclaw-workspace-pro.git
cd openclaw-workspace-pro
./install.sh

What Gets Installed

Directory Structure

workspace/
├── artifacts/           # Standardized output location
│   ├── reports/        # Analysis, summaries, documentation
│   ├── code/           # Generated scripts, apps, configs
│   ├── data/           # Cleaned datasets, processed files
│   └── exports/        # API responses, database dumps
├── memory/
│   └── archive/        # Compressed memory summaries
├── .env                # Secrets (gitignored)
└── .gitignore          # Security

Documentation Added

AGENTS.md enhancements - Artifact workflow, long-run patterns, secrets management
MEMORY-COMPACTION.md - Weekly/monthly maintenance workflow
TOOLS.md additions - Network security allowlist

Templates

.env.example - Secrets template
.gitignore - Protect credentials

Usage

Artifacts Pattern

When producing deliverables:

# Reports
/data/.openclaw/workspace/artifacts/reports/YYYY-MM-DD-project-name.md

# Code
/data/.openclaw/workspace/artifacts/code/YYYY-MM-DD-script-name.py

# Data
/data/.openclaw/workspace/artifacts/data/YYYY-MM-DD-dataset.csv

Benefits:

Clear review boundaries
Easy retrieval
Version tracking
Prevents file sprawl

Secrets Management

Before Workspace Pro:

# TOOLS.md
API_KEY=sk-abc123xyz...  ❌ Plaintext, exposed in git

After Workspace Pro:

# .env (gitignored)
API_KEY=sk-abc123xyz...

# TOOLS.md
API Key: $API_KEY  ✅ Reference only

Memory Compaction

Prevents context bloat in long-running agents:

Weekly (when needed):

Review daily logs from past 7-14 days
Extract key insights → update MEMORY.md
Remove outdated info

Monthly:

Archive daily logs >30 days to memory/archive/YYYY-MM-summary.md
Delete raw files after archival

See MEMORY-COMPACTION.md for full workflow.

Why Use This?

The Problem

Default OpenClaw workspaces:

❌ Files scattered everywhere (no structure)
❌ API keys in plaintext (security risk)
❌ Memory grows indefinitely (context limits)
❌ No artifact review boundaries
❌ Manual maintenance (prone to drift)

The Solution

Workspace Pro implements OpenAI's recommended patterns:

✅ Standardized artifact workflow
✅ Secure secrets management
✅ Systematic memory compaction
✅ Long-running agent patterns
✅ Clear operational workflows

Real Impact

Security: Eliminates credential exposure
Organization: Clear deliverable handoff points
Scalability: Handles months of continuous operation
Maintenance: Defined schedules prevent drift

Based on production patterns from:

OpenAI's long-running agent recommendations
Glean's enterprise skill deployments
OpenClaw community best practices

Configuration

Environment Variables (.env)

After installation, populate .env:

# Example: YouTube API
YOUTUBE_API_KEY=your_key_here
YOUTUBE_OAUTH_CLIENT_ID=your_id_here

# Example: Task Management
VIKUNJA_API_TOKEN=your_token_here

Network Security

Edit TOOLS.md network allowlist:

### Approved Domains
- *.googleapis.com (YouTube API)
- api.brave.com (search)
- tasks.playrockets.com (Vikunja)

Add new domains with security review.

Requirements

OpenClaw 2026.2.9+
Workspace directory: /data/.openclaw/workspace
Shell access (for installation)

Upgrading

cd /data/.openclaw/workspace/openclaw-workspace-pro
git pull
./install.sh

Uninstall

Workspace Pro is non-destructive. To remove:

# Remove added files (safe, preserves your data)
rm -rf artifacts/ memory/archive/
rm .env .gitignore MEMORY-COMPACTION.md

# Restore AGENTS.md, TOOLS.md from backup
cp AGENTS.md.backup AGENTS.md
cp TOOLS.md.backup TOOLS.md

Support

Issues: https://github.com/Eugene9D/openclaw-workspace-pro/issues
Discussions: https://discord.com/invite/clawd
ClawHub: https://clawhub.ai/skills/openclaw-workspace-pro

License

MIT License - See LICENSE file

Credits

Based on patterns from:

OpenAI Shell + Skills + Compaction
OpenClaw community practices
Glean enterprise skill deployments

Built by Eugene Devyatyh for the OpenClaw ecosystem.

Version: 1.0.0
Updated: 2026-02-13
Compatibility: OpenClaw 2026.2.9+

Comments

Loading comments...