| name | ops-companion |
| description | Use when explicit operator, recovery, approval, status, or Telegram allowlist tasks must go through fixed ops helper commands on this PicoClaw host. Do not use this skill for scheduled/daily/morning research or routine GitHub research on the live NAS path. |
Ops Companion Skill
Use this skill only for explicit operator, recovery, approval, status, or allowlist handling that should not be executed directly inside PicoClaw's default workspace policy. Do not use it for scheduled, daily, or morning research automation.
Fixed paths
- project root:
/home/haman/custom-claw-tools/picoclaw-ops-companion
- artifacts root:
/home/haman/.picoclaw/workspace/notes/ops-companion
- TOTP secret:
~/.config/picoclaw-ops-companion/totp.secret
- loopback listener default:
http://127.0.0.1:45450
- live skill path:
/home/haman/.picoclaw/workspace/skills/ops-companion/SKILL.md
- legacy note:
/home/haman/.picoclaw/workspace/notes/claw/ops-companion-skill.md
- live helper commands root:
/home/haman/.picoclaw/workspace/bin
When to use this skill
Use ops-companion when the task:
- is an explicit operator or recovery action that must go through the companion bridge
- asks to approve or reject an existing ops job
- asks for request/job status from
ops-companion
- asks to inspect or update PicoClaw Telegram
allow_from
- needs audit artifacts or risk classification for an explicit operator flow
- needs high-risk approval with Telegram sender plus TOTP
- crosses PicoClaw's normal workspace or policy boundary for an explicit operator-approved action
- should be routed to the companion execution layer instead of direct ad hoc shell work for a manual operator or recovery task
Do not use ops-companion when the task is:
- scheduled, daily, or morning research
- recurring or background research automation
- routine GitHub research on the live NAS path
- ordinary repo, notes, or workspace research that does not require explicit operator or recovery handling
Critical routing rule
For requests covered by this skill, prefer the fixed helper commands in ~/.picoclaw/workspace/bin and do not replace them with generic ls, find, gh, or ad hoc shell pipelines.
For scheduled, daily, or morning research and routine GitHub research on the live NAS path, do not route through ops-companion, mcp_opscompanion_github_research, or ops-github-research.
If the user asks for:
- notes analysis -> use
ops-notes-analysis for explicit operator or recovery analysis only
- workspace/repo path analysis -> use
ops-workspace-analysis for explicit operator or recovery analysis only
- GitHub research -> do not use this skill for routine or scheduled research; only use
ops-github-research for an explicit operator or recovery investigation that must go through the companion bridge
- create repo push approval job -> use
ops-repo-relay-push
- create npm install request -> use
ops-npm-install-package
/approve <job-id> <totp> -> use ops-approve/reject <job-id> -> use ops-reject- status lookup -> use
ops-request-status
- Telegram allowlist management -> use
ops-telegram-allowlist
Only fall back to raw shell if the helper command cannot express the request.
Role split
PicoClaw
- clarify the request
- turn the request into structured JSON
- relay
/approve <job-id> <totp> or /reject <job-id> from Telegram
- if needed, call the companion through CLI or loopback HTTP
- summarize the result back to the user
picoclaw-ops-companion
- validate the request schema
- classify risk
- create approval jobs
- verify sender, TOTP, and TTL
- write request, result, and audit artifacts
- expose loopback endpoints for local relay use
- run allowlisted execution wrappers and Copilot sessions
Current support
Live execute path today
workspace_analysisgithub_research (available for explicit operator or recovery GitHub investigation via a restricted Copilot SDK session; not for scheduled, daily, or morning research, and not for routine live-NAS GitHub research)
Live companion entrypoints today
- MCP tools:
mcp_opscompanion_healthmcp_opscompanion_notes_analysismcp_opscompanion_workspace_analysismcp_opscompanion_github_researchmcp_opscompanion_repo_relay_pushmcp_opscompanion_npm_install_packagemcp_opscompanion_approve_jobmcp_opscompanion_reject_jobmcp_opscompanion_request_statusmcp_opscompanion_execute_request
- CLI:
bootstrap, listen, intake, decision, execute, totp, totp-gen, telegram-allowlist
- relay wrapper:
bin/picoclaw-ops-relay
- helper wrappers:
ops-notes-analysisops-workspace-analysisops-github-researchops-repo-relay-pushops-npm-install-packageops-approveops-rejectops-request-statusops-telegram-allowlist
- loopback listener:
GET /health, POST /intake, POST /decision, POST /execute
High-risk execute path today
repo_relay_push
transport=relay performs a real git pushtransport=bundle writes a .bundle artifact for handoff
npm_install_package
scope=project executes a project-local install and must not use --globalscope=user requires --global and still requires approval before execution
Required workflow
- Determine sender identity. Use
telegram:<sender-id> when available.
- Prefer the
mcp_opscompanion_* MCP tools when available through the PicoClaw gateway path.
- If MCP tool selection is unavailable for the current surface, fall back to a fixed helper command from
~/.picoclaw/workspace/bin.
- Read
requestId, resultStatus, and approvalJobId from the JSON output.
- If
resultStatus is awaiting_approval, show /approve <job-id> <totp> or /reject <job-id>.
- If the user provides
/approve or /reject, relay it with mcp_opscompanion_approve_job / mcp_opscompanion_reject_job or the matching helper command.
- Summarize the result honestly and include artifact paths when they help.
MCP-first routing
When the current PicoClaw surface exposes MCP tools, use them directly:
- notes analysis ->
mcp_opscompanion_notes_analysis for explicit operator or recovery analysis only
- workspace/repo path analysis ->
mcp_opscompanion_workspace_analysis for explicit operator or recovery analysis only
- GitHub research ->
mcp_opscompanion_github_research only for explicit operator or recovery investigations, never for routine scheduled, daily, or morning research
- create repo push approval job ->
mcp_opscompanion_repo_relay_push
- create npm install request ->
mcp_opscompanion_npm_install_package
- approve job ->
mcp_opscompanion_approve_job
- reject job ->
mcp_opscompanion_reject_job
- request status ->
mcp_opscompanion_request_status
- explicit execution after approval ->
mcp_opscompanion_execute_request
Mandatory command mapping
Use these exact helper commands when MCP tools are not available:
ops-notes-analysis SENDER "PROMPT..."
ops-workspace-analysis [--scope notes|workspace|repo] [--write-artifacts] SENDER PATH "PROMPT..."
Use ops-github-research only for explicit operator or recovery investigations. Do not use it for scheduled, daily, or morning research or routine GitHub research on the live NAS path.
ops-github-research [--mode MODE] [--limit N] SENDER OWNER REPO "QUERY..."
ops-repo-relay-push [--remote NAME] [--branch NAME] [--revision REV] [--transport relay|bundle] [--no-execute] SENDER REPO_PATH
ops-npm-install-package [--scope project|user] [--dev] [--global] --package NAME [--package NAME ...] [--no-execute] SENDER PROJECT_PATH
--scope project + --global is invalid--scope user without --global is invalid
ops-approve SENDER JOB_ID TOTP
ops-reject SENDER JOB_ID
ops-request-status REQUEST_ID
ops-telegram-allowlist show
ops-telegram-allowlist add --entry telegram:123456789 --restart-gateway
ops-telegram-allowlist remove --entry telegram:123456789 --restart-gateway
- prefer
telegram:<user-id> entries for new allowlist additions
- use
--dry-run before applying if you need a preview
- use
--allow-empty only when you intentionally want open access; removing the final entry also requires it
Natural-language mapping examples:
- “operator diagnostics:分析 notes 頂層結構” ->
ops-notes-analysis telegram:<PRIMARY_USER_ID> "分析 notes 頂層結構"
- “operator diagnostics:分析
/home/haman/.picoclaw/workspace/notes/root-note” -> ops-workspace-analysis telegram:<PRIMARY_USER_ID> /home/haman/.picoclaw/workspace/notes/root-note "..."
- “operator recovery:研究
hamanpaul/custom-claw-tools 最近的 obs-auto-moc 變更” -> ops-github-research telegram:<PRIMARY_USER_ID> hamanpaul custom-claw-tools "..."
- “/approve job-xxx 123456” ->
ops-approve telegram:<PRIMARY_USER_ID> job-xxx 123456
- “/reject job-xxx” ->
ops-reject telegram:<PRIMARY_USER_ID> job-xxx
Advanced entrypoints
If helper commands are insufficient, then use:
bin/picoclaw-ops-relaypicoclaw-ops-companion CLI- loopback listener
http://127.0.0.1:45450
Guardrails
- Do not bypass the helper commands when they already fit the request.
- Do not use
ops-companion, mcp_opscompanion_github_research, or ops-github-research for scheduled, daily, or morning research or other background research automation on the live NAS path.
- Do not claim unsupported wrappers already execute.
github_research is read-only research for explicit operator or recovery work, not a general shell pass-through.- Do not bypass the companion schema, approval, or audit flow.
- Do not ask for long-lived secrets; approval only needs the current 6-digit TOTP.
- If the companion returns
failed, rejected, or expired, report that state honestly.
- Keep PicoClaw as the front desk and the companion as the execution layer.
