Non-destructive upgrade tool for existing OpenClaw installations.
Already have a working OpenClaw setup? This script merges Clawdboss improvements into your existing install β without destroying your customizations. Companion to Clawdboss.
| Area | What Changes |
|---|---|
| Workspace files | Injects missing sections into AGENTS.md, SOUL.md, etc. β never overwrites existing content |
| openclaw.json | Adds missing config keys, fixes defaults (maxConcurrent, blockStreamingCoalesce) β preserves your values |
| Security | Prompt injection defense, anti-loop rules, WAL Protocol, External Content Security |
| Secret migration | Detects plaintext API keys in openclaw.json and offers to move them to .env with ${VAR} references |
| Skills | Offers to install missing Clawdboss skills (GitHub, Humanizer, Self-Improving, Find Skills, Marketing Skills) |
| Extensions | Installs/updates memory-hybrid (SQLite + LanceDB two-tier memory) |
| Specialist agents | Patches workspace files for comms/research/security agents if they exist |
| Telegram | Offers to add Telegram as a messaging channel (non-destructive β won't add if not wanted) |
| .env | Adds missing env vars without overwriting existing ones |
- π Never overwrites user content β merge, don't replace
- πΎ Always backs up first β timestamped backup of your entire
~/.openclawbefore any changes - π Dry-run mode β preview exactly what would change
- π Idempotent β safe to run as many times as you want
- π« No onboarding questions β this isn't a fresh setup, no "what's your name" prompts
# Clone alongside clawdboss
git clone https://github.com/NanoFlow-io/clawdboss-upgrade.git
cd clawdboss-upgrade
# Preview changes (recommended first)
./upgrade.sh --dry-run
# Run the upgrade
./upgrade.shUsage: upgrade.sh [OPTIONS]
Options:
--dry-run Show what would change without modifying anything
--verbose Show detailed diffs and operations
--force Skip confirmation prompts
--clawdboss DIR Path to clawdboss repo (default: auto-detect)
--openclaw DIR Path to OpenClaw state dir (default: ~/.openclaw)
--help Show this help
# Preview all changes with diffs
./upgrade.sh --dry-run --verbose
# Non-interactive upgrade (accept all defaults)
./upgrade.sh --force
# Custom paths
./upgrade.sh --clawdboss /opt/clawdboss --openclaw /home/user/.openclaw- Existing OpenClaw installation with
~/.openclaw/openclaw.json - Python 3 (for JSON manipulation and markdown parsing)
- Node.js + npm (for skills and extensions)
git(to clone clawdboss templates if not found locally)
The script expects the Clawdboss repo to be cloned alongside it (e.g., ~/clawdboss and ~/clawdboss-upgrade). If not found, it will attempt to clone it automatically.
The upgrade script uses a section-aware merge strategy for markdown files:
- Scan the template for each section (by heading)
- Check if that section (or its key content) already exists in your file
- Skip sections that are already present (even if worded differently)
- Inject only new sections at the end of your file
This means:
- Your custom sections are never touched
- Your modified versions of template sections are preserved
- New sections from updated templates are added automatically
- The script checks for content patterns, not just headers β so renamed sections still match
Before any changes, a timestamped backup is created at ~/.openclaw/backups/upgrade-YYYYMMDD-HHMMSS/:
backups/upgrade-20260310-143022/
βββ openclaw.json
βββ .env
βββ workspace/
β βββ AGENTS.md
β βββ SOUL.md
β βββ USER.md
β βββ IDENTITY.md
β βββ TOOLS.md
β βββ HEARTBEAT.md
βββ workspace-comms/
β βββ ...
βββ workspace-research/
βββ ...
To rollback: cp -r ~/.openclaw/backups/upgrade-YYYYMMDD-HHMMSS/* ~/.openclaw/
Clawdboss Upgrade can install these optional tools and skills if they're missing from your setup:
| Tool | Purpose | Link |
|---|---|---|
| OCTAVE | Token compression for multi-agent handoffs (3-20x reduction) | GitHub Β· PyPI |
| Graphthulhu | Knowledge graph memory with Obsidian/Logseq backends | GitHub |
| ApiTap | Intercepts web traffic to teach agents how APIs work | GitHub Β· npm |
| Scrapling | Anti-bot web scraping with adaptive selectors | GitHub Β· PyPI |
| GitHub | Issues, PRs, CI/CD via the gh CLI |
CLI Β· ClawHub |
| Playwright MCP | Full browser automation (navigate, click, fill, screenshot) | ClawHub |
| Humanizer | Detects and removes AI writing patterns (24 patterns, 500+ terms) | ClawHub |
| Self-Improving Agent | Captures errors and corrections for continuous learning | ClawHub |
| Find Skills | Discover and install new capabilities from ClawHub on-the-fly | ClawHub |
| Marketing Skills | 15+ reference skills for copywriting, CRO, SEO, email, paid ads | ClawHub |
| Healthcheck | Host security audits: firewall, SSH, system updates, exposure | Built into OpenClaw |
| Clawmetry | Real-time observability dashboard (token costs, sessions, flow) | GitHub Β· Website |
| ClawSec | File integrity monitoring, security advisory feed, malicious skill detection | GitHub Β· Website |
| Clawdboss | Clawdboss Upgrade | |
|---|---|---|
| Purpose | Fresh install from scratch | Upgrade existing install |
| Asks questions | Yes (name, keys, personality) | No (detects everything) |
| Creates files | Yes (from templates) | Only if missing |
| Overwrites | Yes (fresh setup) | Never |
| Backup | Only openclaw.json | Everything |
| Idempotent | Not designed for re-runs | Safe to run repeatedly |
MIT
Built by NanoFlow.io β’ Part of the Clawdboss ecosystem