ClawHub

Bobiverse Replicate

v1.2.0

Create a new Bob agent only on explicit operator command using a guarded replication runner. Purposeful Bobiverse-style replication for OpenClaw agents.

1· 63·0 current·0 all-time
byJames Sesler@theamericanmaker
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
Capability signals
CryptoCan make purchases
These labels describe what authority the skill may exercise. They are separate from suspicious or malicious moderation verdicts.
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
Name/description (operator-driven Bob replication) matches the actual footprint: the skill requires openclaw and python3, includes templates for workspace files, and bundles a guarded runner script that operates on OpenClaw workspaces under ~/.openclaw. The brew install entry only provides python3 (which the runner needs); requiring the openclaw binary is appropriate for creating/registering agents.
Instruction Scope
SKILL.md and supporting docs describe a narrow, explicit-flow replication procedure (gather sanitized inputs, dry-run with nonce, await explicit confirmation, stage clone under ~/.openclaw, update SOUL/IDENTITY/LINEAGE). The instructions reference only workspace files and operator-provided parameters. They do not instruct collection of unrelated system data or credentials.
Install Mechanism
Install spec is minimal: a Homebrew formula install for python (python3). No arbitrary downloads, no extract-from-URL, and code is bundled with the skill (scripts and docs). This is proportionate to the stated need for a python runner.
Credentials
The skill declares no required environment variables or credentials. It requests filesystem access to agent workspaces (documented) and CLI access to openclaw, which are reasonable for a replication/agent-management skill. No unrelated secrets or config paths are requested.
Persistence & Privilege
always is false and the skill is user-invocable. The runner writes audit & pending files under ~/.openclaw (replication-audit.log and replication-pending/...), which is consistent with its function. It does not request system-wide configuration changes or permanent elevated privileges beyond workspace-level writes.
Assessment
This bundle appears coherent and implements explicit, human-approved replication. Before installing, consider: 1) Verify you trust the installed openclaw CLI (the runner likely invokes it) and that openclaw is the expected upstream binary. 2) Back up any important workspaces under ~/.openclaw — the runner creates/stages top-level workspaces (workspace-<id>) and can remove/replace directories during execute. 3) Review scripts/replicate_safe.py yourself (it enforces input validation, sandboxing to ~/.openclaw, symlink rejection, and nonce-backed confirmation) to confirm it meets your policies; note the script imports subprocess (expected for calling the openclaw CLI) — ensure it does not perform unsafe shell interpolation in the environment you will run it. 4) The brew install only provides python3; you must install openclaw separately if not present. 5) Keep operator approval practice: the skill enforces dry-run + explicit REPLICATE <clone-id> <nonce> confirmation, so do not allow unattended or automated confirmation tokens. If you want more assurance, run the runner in a test workspace first to observe behavior.

Like a lobster shell, security has layers — review code before you run it.

latestvk97drjrsfwtwa72xy5t4fn0g4h846ras

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Runtime requirements

OSmacOS · Linux
Binsopenclaw, python3

Install

Install Python 3 (brew)
Bins: python3
brew install python

Comments