ClawVault
Integrations

ClawHub

Publish and install ClawVault as a skill on ClawHub, OpenClaw's skill marketplace.

ClawHub

ClawHub is the skill marketplace for OpenClaw. ClawVault is distributed as a ClawHub skill, which means installing it, updating it, and sharing your configuration is handled through the standard skill lifecycle.

Installing from ClawHub

openclaw skill install clawvault

This downloads the ClawVault skill, installs the CLI, and registers the OpenClaw hook. After installation, run setup:

clawvault setup

The setup wizard detects your OpenClaw environment and configures the vault path, hook integration, and default settings.

Publishing as a Skill

If you have built extensions or customizations on top of ClawVault, you can publish them as a separate skill:

Create the skill manifest

Every ClawHub skill needs a SKILL.md and a skill.json:

{
  "name": "clawvault-custom",
  "version": "1.0.0",
  "description": "Custom ClawVault configuration with team-specific templates",
  "dependencies": ["clawvault"],
  "hooks": {
    "post-install": "setup.sh"
  }
}

Write the SKILL.md

Document what your skill does, how to configure it, and any requirements. This file is displayed on the ClawHub listing page.

Publish

openclaw skill publish

This validates the skill manifest, runs audit checks, and uploads to ClawHub.

Skill Metadata

The skill.json manifest supports the following fields:

FieldRequiredDescription
nameYesUnique skill identifier
versionYesSemver version string
descriptionYesShort description for the listing
dependenciesNoOther skills this skill requires
hooksNoLifecycle hooks (post-install, pre-update, etc.)
compatibilityNoMinimum OpenClaw version required
authorNoAuthor name or organization
licenseNoSPDX license identifier

Audit Requirements

Before a skill is listed publicly on ClawHub, it must pass automated audits:

  • No secrets -- the skill must not contain API keys, tokens, or credentials
  • Valid manifest -- skill.json must parse correctly with all required fields
  • Hook safety -- hook scripts are scanned for dangerous operations (rm -rf, curl to unknown hosts, etc.)
  • Dependency resolution -- all declared dependencies must exist on ClawHub
# Run the audit locally before publishing
openclaw skill audit

Skills that fail audit are rejected from the public registry. Fix all warnings before publishing. Private skills (team-only) have relaxed audit requirements.

Version Management

ClawHub uses semantic versioning. To update a published skill:

# Bump version in skill.json, then:
openclaw skill publish

Users on older versions receive update notifications:

openclaw skill update clawvault

To pin a specific version:

openclaw skill install clawvault@2.1.0

Breaking Changes

When publishing a major version bump (e.g., 1.x to 2.x), ClawHub flags it as a breaking change. Users must explicitly opt in to major upgrades:

openclaw skill update clawvault --major

AI and LLMs

How ClawVault integrates with large language models for context injection, memory compression, and intelligent retrieval.

CI/CD

Run ClawVault compatibility checks, vault health validation, and hook verification in continuous integration pipelines.

On this page

ClawHubInstalling from ClawHubPublishing as a SkillCreate the skill manifestWrite the SKILL.mdPublishSkill MetadataAudit RequirementsVersion ManagementBreaking Changes