docs/help/scripts.md

---
summary: "Repository scripts: purpose, scope, and safety notes"
read_when:
  - Running scripts from the repo
  - Adding or changing scripts under ./scripts
title: "Scripts"
---

# Scripts

The `scripts/` directory contains helper scripts for local workflows and ops tasks.
Use these when a task is clearly tied to a script; otherwise prefer the CLI.

## Conventions

- Scripts are **optional** unless referenced in docs or release checklists.
- Prefer CLI surfaces when they exist (example: auth monitoring uses `openclaw models status --check`).
- Assume scripts are host‑specific; read them before running on a new machine.

## Auth monitoring scripts

Auth monitoring is covered in [Authentication](/gateway/authentication). The scripts under `scripts/` are optional extras for systemd/Termux phone workflows.

## GitHub read helper

Use `scripts/gh-read` when you want `gh` to use a GitHub App installation token for repo-scoped read calls while leaving normal `gh` on your personal login for write actions.

Required env:

- `OPENCLAW_GH_READ_APP_ID`
- `OPENCLAW_GH_READ_PRIVATE_KEY_FILE`

Optional env:

- `OPENCLAW_GH_READ_INSTALLATION_ID` when you want to skip repo-based installation lookup
- `OPENCLAW_GH_READ_PERMISSIONS` as a comma-separated override for the read permission subset to request

Repo resolution order:

- `gh ... -R owner/repo`
- `GH_REPO`
- `git remote origin`

Examples:

- `scripts/gh-read pr view 123`
- `scripts/gh-read run list -R openclaw/openclaw`
- `scripts/gh-read api repos/openclaw/openclaw/pulls/123`

## When adding scripts

- Keep scripts focused and documented.
- Add a short entry in the relevant doc (or create one if missing).
-											feat(models): add oauth auth health
										
										
											2026-01-09 00:32:48 +00:00
+								---
 								summary: "Repository scripts: purpose, scope, and safety notes"
 								read_when:
 								  - Running scripts from the repo
 								  - Adding or changing scripts under ./scripts
-											Docs: add nav titles across docs (#5689)
										
										
											2026-01-31 16:04:03 -05:00
+								title: "Scripts"
-											feat(models): add oauth auth health
										
										
											2026-01-09 00:32:48 +00:00
+								---
-											chore: Run pnpm format:fix.
										
										
											2026-01-31 21:13:13 +09:00
-											feat(models): add oauth auth health
										
										
											2026-01-09 00:32:48 +00:00
+								# Scripts
 								The `scripts/` directory contains helper scripts for local workflows and ops tasks.
 								Use these when a task is clearly tied to a script; otherwise prefer the CLI.
 								## Conventions
 								- Scripts are **optional** unless referenced in docs or release checklists.
-											refactor: rename to openclaw
										
										
											2026-01-30 03:15:10 +01:00
+								- Prefer CLI surfaces when they exist (example: auth monitoring uses `openclaw models status --check`).
-											feat(models): add oauth auth health
										
										
											2026-01-09 00:32:48 +00:00
+								- Assume scripts are host‑specific; read them before running on a new machine.
 								## Auth monitoring scripts
-											docs: restructure automation section as Automation & Tasks
										
										
											2026-04-03 03:16:41 +09:00
+								Auth monitoring is covered in [Authentication](/gateway/authentication). The scripts under `scripts/` are optional extras for systemd/Termux phone workflows.
-											feat(models): add oauth auth health
										
										
											2026-01-09 00:32:48 +00:00
-											feat: add gh-read GitHub app helper
										
										
											2026-04-08 00:08:30 +01:00
+								## GitHub read helper
 								Use `scripts/gh-read` when you want `gh` to use a GitHub App installation token for repo-scoped read calls while leaving normal `gh` on your personal login for write actions.
 								Required env:
 								- `OPENCLAW_GH_READ_APP_ID`
 								- `OPENCLAW_GH_READ_PRIVATE_KEY_FILE`
 								Optional env:
 								- `OPENCLAW_GH_READ_INSTALLATION_ID` when you want to skip repo-based installation lookup
 								- `OPENCLAW_GH_READ_PERMISSIONS` as a comma-separated override for the read permission subset to request
 								Repo resolution order:
 								- `gh ... -R owner/repo`
 								- `GH_REPO`
 								- `git remote origin`
 								Examples:
 								- `scripts/gh-read pr view 123`
 								- `scripts/gh-read run list -R openclaw/openclaw`
 								- `scripts/gh-read api repos/openclaw/openclaw/pulls/123`
-											feat(models): add oauth auth health
										
										
											2026-01-09 00:32:48 +00:00
+								## When adding scripts
 								- Keep scripts focused and documented.
 								- Add a short entry in the relevant doc (or create one if missing).