# Send Open Source Release to your agent
Hand the extracted package to your coding agent with a concrete install brief instead of figuring it out manually.
## Fast path
- Download the package from Yavira.
- Extract it into a folder your agent can access.
- Paste one of the prompts below and point your agent at the extracted folder.
## Suggested prompts
### New install

```text
I downloaded a skill package from Yavira. Read SKILL.md from the extracted folder and install it by following the included instructions. Tell me what you changed and call out any manual steps you could not complete.
```
### Upgrade existing

```text
I downloaded an updated skill package from Yavira. Read SKILL.md from the extracted folder, compare it with my current installation, and upgrade it while preserving any custom configuration unless the package docs explicitly say otherwise. Summarize what changed and any follow-up checks I should run.
```
## Machine-readable fields
```json
{
  "schemaVersion": "1.0",
  "item": {
    "slug": "opensource-release",
    "name": "Open Source Release",
    "source": "tencent",
    "type": "skill",
    "category": "效率提升",
    "sourceUrl": "https://clawhub.ai/jini92/opensource-release",
    "canonicalUrl": "https://clawhub.ai/jini92/opensource-release",
    "targetPlatform": "OpenClaw"
  },
  "install": {
    "downloadUrl": "/downloads/opensource-release",
    "sourceDownloadUrl": "https://wry-manatee-359.convex.site/api/v1/download?slug=opensource-release",
    "sourcePlatform": "tencent",
    "targetPlatform": "OpenClaw",
    "packageFormat": "ZIP package",
    "primaryDoc": "SKILL.md",
    "includedAssets": [
      "SKILL.md"
    ],
    "downloadMode": "redirect",
    "sourceHealth": {
      "source": "tencent",
      "slug": "opensource-release",
      "status": "healthy",
      "reason": "direct_download_ok",
      "recommendedAction": "download",
      "checkedAt": "2026-04-30T15:17:25.442Z",
      "expiresAt": "2026-05-07T15:17:25.442Z",
      "httpStatus": 200,
      "finalUrl": "https://wry-manatee-359.convex.site/api/v1/download?slug=opensource-release",
      "contentType": "application/zip",
      "probeMethod": "head",
      "details": {
        "probeUrl": "https://wry-manatee-359.convex.site/api/v1/download?slug=opensource-release",
        "contentDisposition": "attachment; filename=\"opensource-release-1.1.0.zip\"",
        "redirectLocation": null,
        "bodySnippet": null,
        "slug": "opensource-release"
      },
      "scope": "item",
      "summary": "Item download looks usable.",
      "detail": "Yavira can redirect you to the upstream package for this item.",
      "primaryActionLabel": "Download for OpenClaw",
      "primaryActionHref": "/downloads/opensource-release"
    },
    "validation": {
      "installChecklist": [
        "Use the Yavira download entry.",
        "Review SKILL.md after the package is downloaded.",
        "Confirm the extracted package contains the expected setup assets."
      ],
      "postInstallChecks": [
        "Confirm the extracted package includes the expected docs or setup files.",
        "Validate the skill or prompts are available in your target agent workspace.",
        "Capture any manual follow-up steps the agent could not complete."
      ]
    }
  },
  "links": {
    "detailUrl": "https://openagent3.xyz/skills/opensource-release",
    "downloadUrl": "https://openagent3.xyz/downloads/opensource-release",
    "agentUrl": "https://openagent3.xyz/skills/opensource-release/agent",
    "manifestUrl": "https://openagent3.xyz/skills/opensource-release/agent.json",
    "briefUrl": "https://openagent3.xyz/skills/opensource-release/agent.md"
  }
}
```
## Documentation

### Open Source Release

Safely convert a private repo to public by sanitizing personal data and cleaning history.

### Pre-flight Checklist

Scan source code — search for:

Absolute paths: C:\\Users\\, home directory references
Usernames: OS-specific account names
Internal hostnames / port names
API keys / tokens: .env, hardcoded secrets
Email / phone numbers in commit author config



Check cached artifacts — ensure .gitignore covers:

Binary caches (.pkl, .db, checksums.json)
__pycache__/, node_modules/, .env, *.egg-info/
Project-specific cache directories

### Step 1: Code Scan

# Find hardcoded paths and usernames
Get-ChildItem -Recurse -Include "*.py","*.ps1","*.js","*.ts" |
  Select-String -Pattern "C:\\\\Users|/home/|your-username" -SimpleMatch |
  Where-Object { $_.Path -notmatch "__pycache__|node_modules|\\.git" }

Fix: replace with environment variables (os.environ.get / process.env) and add a .env.example.

### Step 2: Docs Scan

Get-ChildItem -Recurse -Include "*.md","*.txt","*.yaml","*.yml" |
  Select-String -Pattern "C:\\\\Users|/home/|your-username" -SimpleMatch |
  Where-Object { $_.Path -notmatch "node_modules|\\.git" }

Replace personal paths with generic placeholders ($VAULT_PATH, ~/vault, etc.).

### Step 3: Git History Analysis

git log --all -p | Select-String -Pattern "SENSITIVE_TERM" | Select-Object -First 50
git log --all --diff-filter=A -- "cache/*"

Choose a strategy:

< 50 commits + cache only in history → Option B (clean push)
Large history with sensitive data → Option A (BFG Repo Cleaner / git filter-repo)
History is fine, just old paths → Option C (leave as-is)

### Step 4: Clean Push (Option B)

git checkout --orphan clean-main
git add -A
git commit -m "feat: initial public release"
git remote set-url origin https://github.com/{owner}/{repo}.git  # verify no token in URL!
git branch -M main
git push origin main --force
git push origin --delete {old-branch}

### Step 5: Make Public

gh repo edit {owner}/{repo} --visibility public --accept-visibility-change-consequences --description "Short description"

### Step 6: Verify

# Final scan for sensitive strings
Get-ChildItem -Recurse -Include "*.py","*.md","*.yaml","*.js","*.ts" |
  Select-String -Pattern "SENSITIVE_TERM" -SimpleMatch |
  Where-Object { $_.Path -notmatch "__pycache__|node_modules|\\.git" }

# Confirm remote URL has no token
git remote -v

# Confirm visibility
gh repo view {owner}/{repo} --json visibility

### Step 7: Post-Release Housekeeping (Optional)

Add issue tracking to HEARTBEAT.md
Update memory/{project}.md with release notes

### Gotchas

Never include tokens in git remote URLs — always verify before push
Binary caches not covered by .gitignore may already be in history — check carefully
Encoding issues on Windows — use UTF-8 explicitly in PowerShell/Python
Your GitHub username is already public — that is fine to leave as-is
Never commit .env files — add to .gitignore if not already there
## Trust
- Source: tencent
- Verification: Indexed source record
- Publisher: jini92
- Version: 1.1.0
## Source health
- Status: healthy
- Item download looks usable.
- Yavira can redirect you to the upstream package for this item.
- Health scope: item
- Reason: direct_download_ok
- Checked at: 2026-04-30T15:17:25.442Z
- Expires at: 2026-05-07T15:17:25.442Z
- Recommended action: Download for OpenClaw
## Links
- [Detail page](https://openagent3.xyz/skills/opensource-release)
- [Send to Agent page](https://openagent3.xyz/skills/opensource-release/agent)
- [JSON manifest](https://openagent3.xyz/skills/opensource-release/agent.json)
- [Markdown brief](https://openagent3.xyz/skills/opensource-release/agent.md)
- [Download page](https://openagent3.xyz/downloads/opensource-release)