wangjunxiao/nanoclaw
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
a65ee2e55c21a884b92dffad2c252b73bfacbc9e
nanoclaw/.claude/skills/migrate-from-v1/SKILL.md
gabi-simons 3ee7d2147e feat: add v1 → v2 migration to setup flow (experimental) 
`bash nanoclaw.sh` detects a v1 install before channel pairing and does a
best-effort automated port of operationally important state. Hands off to
a new `/migrate-from-v1` skill for owner seeding and fork customizations.

Between the timezone and channel steps, `setup/auto.ts` calls
`runMigrateV1()` which orchestrates these registered sub-steps (each a
separate entry in the progression log with its own raw log + status
block — failures never abort the chain):

- **migrate-detect** — scans siblings of the v2 checkout + common $HOME
  locations; `$NANOCLAW_V1_PATH` overrides authoritatively. Relaxed
  `package.json` check lets forks + partial installs still match; DB
  presence is the strongest signal.
- **migrate-validate** — asserts v1 DB shape (tables + required
  columns); writes `schema-mismatch.json` on failure. Subsequent steps
  short-circuit their DB-dependent parts but still run.
- **migrate-db** — seeds `agent_groups` + `messaging_groups` +
  `messaging_group_agents` from v1's `registered_groups`. JID
  decomposition (`dc:123` → `channel_type='discord'`,
  `platform_id='discord:123'`); `trigger_pattern` + `requires_trigger`
  → `engage_mode` + `engage_pattern` (mirrors migration 010 backfill).
  Users + user_roles are NOT seeded — the skill does that with an owner
  interview. Idempotent: existing rows reused, not duplicated.
- **migrate-groups** — rsync group folders. v1 `CLAUDE.md` → v2
  `CLAUDE.local.md` (v2 composes `CLAUDE.md` at container spawn); v1
  `container_config` JSON → `.v1-container-config.json` sidecar for the
  skill to translate. Tight v1-pattern scan (`/workspace/ipc/tasks`,
  `store/messages.db`, `[PR_CONTEXT:`, etc.) flags files referencing
  v1-specific infrastructure — content is NOT modified, just flagged in
  the handoff.
- **migrate-env** — merges v1 `.env` into v2 `.env`, never overwriting
  existing v2 keys.
- **migrate-channel-auth** — per-channel registry tracks v1 env keys,
  v2 required keys (with source-of-key instructions — e.g. Discord
  needs `DISCORD_PUBLIC_KEY` which v1 never stored), and candidate
  on-disk auth state paths (Baileys keystore, matrix sync state,
  etc.). Missing required v2 keys surface as actionable followups and
  flip the step to `partial`.
- **migrate-channels** — runs `setup/install-<channel>.sh` for each
  detected channel in non-interactive mode. Install-script output is
  captured to `logs/setup-migration/install-<channel>.log` sidecars
  (silent under the parent spinner). Channels with no v2 adapter get
  a `not_supported` followup but don't degrade status.
- **migrate-tasks** — v1 `scheduled_tasks` → `messages_in` rows with
  `kind='task'` in each session's `inbound.db`. `schedule_type`
  mapping (cron / interval / once → v2 cron). Idempotent: skips v1
  task ids already present. Inactive rows dumped to
  `inactive-tasks.json` for reference.

Everything writes to `logs/setup-migration/handoff.json` — the source
of truth the skill consumes.

`.claude/skills/migrate-from-v1/SKILL.md`:

- **Phase A** (always): owner seeding + v1 access policy flip
  (`unknown_sender_policy` public/strict) via `AskUserQuestion`. Pulls
  sender candidates from v1's `messages` table as hints.
- **Phase B** (if followups exist): walks
  `handoff.followups` — translates `.v1-container-config.json`
  sidecars, handles `not_supported` channels, fills in missing
  required keys with instructions on where to get them.
- **Phase C** (fork-aware): `git log <upstream>..HEAD` in v1. Empty →
  "no customizations to port." Non-empty → scope choice (mechanical /
  full interview / reference-only). Portable categories
  (`container/skills/*`, `.claude/skills/*`, docs) scan+copy with
  `scanForV1Patterns`. Non-portable (`src/*`,
  `container/agent-runner/src/*`) stash to `docs/v1-fork-reference/`
  — explicit "don't translate v1 infra to v2" warning because v1's
  IPC file queue / single DB don't exist in v2.

Clearly marked in README, CLAUDE.md, SKILL.md header, and via a `p.warn`
that fires once per run when v1 is detected. Users with no v1 install
see a silent skip — no prompts, no noise.

Verified end-to-end against a live v1 install (300 discord + 1
discord-supervisor groups, fork with ~15 commits of PR-factory work):
- Detect → validate → db (301 rows seeded) → groups (301 CLAUDE.local.md
  + 178 other files + 1 container_config sidecar) → env (4 keys copied)
  → channel-auth (flagged missing `DISCORD_APPLICATION_ID` +
  `DISCORD_PUBLIC_KEY`) → channels (discord installed, discord-supervisor
  → not_supported) → tasks (0 rows, skipped)
- Idempotent re-run: 0 rows created, 903 rows reused; tasks skip if
  id already present
- Fresh-user case: silent skip, no prompts, straight to "You're ready!"
- Schema-mismatch case: recorded to `schema-mismatch.json`, chain
  continues

- Unit tests for the pure transforms (`parseJid`,
  `inferChannelType`, `triggerToEngage`, `scanForV1Patterns`,
  `looksLikeV1Install`)
- Validate `requiredV2Keys` for telegram/slack/matrix/teams/webex/
  resend/linear against the actual Chat SDK packages (Discord was
  verified from real error output)
- Widen candidate auth file paths for WhatsApp/Matrix/iMessage based
  on real non-Discord v1 installs once we have some

See docs/v1-to-v2-changes.md for the v1 → v2 architecture diff.
2026-04-23 13:06:14 +00:00

10 KiB
Raw Blame History

name, description
name description
migrate-from-v1 Finish migrating a NanoClaw v1 install into v2. Run this after `bash nanoclaw.sh` has completed its automated migration step. Seeds the owner user, applies v1 access defaults, fixes any migration sub-step that didn't finish, and interviews the user about custom v1 code to port forward. Triggers on "migrate from v1", "finish migration", "v1 migration", or automatically after setup when `logs/setup-migration/handoff.json` exists.

Migrate from v1 to v2

⚠️ Experimental. This skill and the setup migration step are early. Remind the user to back up data/v2.db + groups/ before making destructive changes, and prefer small, reversible edits. Not recommended yet for high-stakes production installs.

The setup flow's migration step (in setup/migrate-v1.ts) already ran a best-effort automated pass. Your job is to finish what it couldn't do automatically, then interview the user about any custom code they had in v1 and help port it forward.

Read docs/v1-to-v2-changes.md before doing anything — it's the vocabulary for where v1 things moved to in v2.

What the automation did

The setup flow ran these sub-steps (each as its own progression-log entry):

Sub-step What it did
migrate-detect Found v1 install on disk (scanned ~/nanoclaw, ~/.nanoclaw, ~/Code/nanoclaw, etc., or $NANOCLAW_V1_PATH).
migrate-validate Checked v1 DB has expected tables + required columns.
migrate-db Seeded agent_groups + messaging_groups + messaging_group_agents from registered_groups. Mapped trigger_pattern/requires_triggerengage_mode/engage_pattern. Did NOT seed users/user_roles.
migrate-groups Copied v1 groups/<folder>/ to v2. v1 CLAUDE.md → v2 CLAUDE.local.md. v1 container_config JSON → .v1-container-config.json sidecar (don't silent-map to v2's container.json).
migrate-env Merged v1 .env keys into v2 .env (never overwrote existing keys).
migrate-channel-auth Copied non-env auth state per channel (Baileys keystore, matrix state, etc.) based on CHANNEL_AUTH_REGISTRY in setup/migrate-v1/shared.ts.
migrate-channels Ran setup/install-<channel>.sh for each channel detected in registered_groups.
migrate-tasks Ported active v1 scheduled_tasks into each session's inbound.db as kind='task' rows. Inactive tasks dumped to inactive-tasks.json for reference.

Artifacts to read first

  • logs/setup-migration/handoff.jsonstart here. Structured summary of every sub-step: status, fields, notes, plus detected channels, group selection, and a top-level followups list. The top-level overall_status tells you at a glance what kind of session this is.
  • logs/setup.log — the progression log. Each migrate-* sub-step has one entry with status, duration, and a pointer to its raw log.
  • logs/setup-steps/NN-migrate-*.log — raw per-sub-step stdout+stderr. Read these when a step failed or you need to understand why.
  • logs/setup-migration/schema-mismatch.json — only exists if migrate-validate rejected the v1 DB shape. Describes what was missing.
  • logs/setup-migration/inactive-tasks.json — v1 scheduled tasks we didn't migrate (completed, stopped, or unmappable schedule types).

Flow

Phase A — always run: owner seeding + access policy

The automation deliberately did not seed users, user_roles, or flip messaging_groups.unknown_sender_policy. v1 has no ground truth for who the owner is, and no single source for the "anyone can message / only known users" setting. Ask the user.

  1. Read handoff.jsondetected_channels to know which channel(s) to address the user on.
  2. Use AskUserQuestion to ask "Which handle on <primary channel> is yours?" with options pulled from context if you have any hints (e.g. recent v1 message senders), plus "Let me type it" and "Use a different channel." Build the user id as <channel_type>:<handle>.
  3. Insert into v2 central DB (data/v2.db):
    • users(id, kind, display_name, created_at) — use the channel_type as kind.
    • user_roles(user_id, role='owner', agent_group_id=NULL, granted_by=NULL, granted_at=now).
  4. Ask "In v1, could anyone message your assistant, or only known users?" via AskUserQuestion:
    • "Anyone could message it" → update every row in messaging_groups (for migrated channel_types) to unknown_sender_policy='public'.
    • "Only known users" → leave unknown_sender_policy='strict'; walk the user through seeding agent_group_members rows for each trusted handle they name.

Use the DB helpers in src/db/agent-groups.ts, src/db/messaging-groups.ts, and src/db/user-roles.ts rather than hand-rolling SQL — they keep the companion agent_destinations and indexes correct. Always init the central DB first:

import { initDb } from '../src/db/connection.js';
import { runMigrations } from '../src/db/migrations/index.js';
import { DATA_DIR } from '../src/config.js';
import path from 'path';
const db = initDb(path.join(DATA_DIR, 'v2.db'));
runMigrations(db);

Phase B — branch on handoff.json: overall_status

If overall_status === 'success' and followups is empty: go straight to Phase C (customization interview).

Otherwise (partial, failed, or non-empty followups): walk handoff.steps and handoff.followups top-to-bottom. For each entry:

  • Read the step's fields and notes and its raw log (logs/setup-steps/NN-<step>.log).
  • Explain the situation to the user in one sentence, then propose a fix.
  • Do the fix yourself when it's mechanical (re-running an install script, seeding a missed agent_destinations row, re-copying a channel's auth files, manually translating an unsupported schedule_type). Use AskUserQuestion when a judgment call is needed (is this orphan channel worth keeping? is this v1 container_config still relevant?).

Common cases:

  • migrate-validate status=failed: the v1 DB had an unexpected shape. Read schema-mismatch.json. If tables are missing, the user may have run a very old or customized v1 — ask before trying to salvage. If only columns are missing, you can often proceed by hand-writing the SELECT with the columns that exist.
  • migrate-db status=partial, SKIPPED>0: some registered_groups rows didn't seed. The notes field of the step entry names each failed folder. Most commonly: a JID we couldn't parse. Ask the user whether to manually wire each.
  • migrate-channels status=partial, some entries not_supported: v1 had channels v2 doesn't ship a skill for yet. Ask the user whether to keep the messaging_groups rows (they'll stay orphaned until v2 grows the adapter) or delete them.
  • migrate-channel-auth has files_missing: for WhatsApp specifically, encryption sessions often can't survive the copy — tell the user a fresh pair may be needed via /add-whatsapp.
  • Per-folder .v1-container-config.json sidecars exist: read each, discuss with the user, and translate to v2's groups/<folder>/container.json format.

Phase C — customizations (fork-aware)

NanoClaw recommends running on a fork, so most real v1 installs have at least some customizations.

Start with divergence detection. In the v1 repo at handoff.v1_path:

cd <v1_path>
git remote -v                           # identify the upstream remote
git log --oneline <upstream>/main..HEAD # commits ahead of upstream

If the log is empty: stock v1. Tell the user "no customizations to port" and skip the rest of Phase C.

If the log has commits, show them to the user and offer a scope via AskUserQuestion:

  1. Mechanical (recommended) — copy the portable categories (skills, docs), stash the rest as reference.
  2. Full interview — walk each commit with me, decide one-by-one. Use Explore sub-agents for diffs > 10 files.
  3. Reference only — stash everything to docs/v1-fork-reference/, copy nothing now.

Portability rules of thumb:

  • Portable: container/skills/*, .claude/skills/*, docs/*, top-level config. Scan each with scanForV1Patterns (in setup/migrate-v1/shared.ts) before copying — clean ones land as-is, dirty ones get a followup.
  • Not portable: src/* (host) and container/agent-runner/src/* (agent-runner). v2's architecture is fundamentally different (Node host with split session DBs vs v1's single process + IPC file queue). Stash to docs/v1-fork-reference/ with a README explaining the v1→v2 mapping — don't translate. Mechanical translation is a trap; let the user rebuild the feature on v2 primitives.
  • Already handled: groups/*migrate-groups copied these and flagged v1 patterns. Don't redo in Phase C.
  • Case by case: package.json deps — check whether v2 already has each; never add to v2's lockfile without approval (supply-chain minimumReleaseAge applies).

When stashing, write docs/v1-fork-reference/README.md with commits list, stashed source files, and the suggested porting plan.

Principles

  • Never silently copy code. Read, explain, propose, apply. Show diffs before applying when non-trivial.
  • Credentials are masked when displayed (first 4 + ... + last 4 characters). The handoff file doesn't contain values; keep it that way.
  • The v1 checkout is read-only. We never delete or modify ~/nanoclaw. If the user wants to retire it later, that's a separate conversation.
  • No migration re-runs. The migrate-* sub-steps are idempotent, but re-running them from inside this skill is almost always the wrong move — finish by hand. Re-running is for when the user re-runs bash nanoclaw.sh.
  • handoff.json is source of truth across context compactions. If the conversation gets compacted mid-work, re-read it and git status to recover state. Do not maintain a separate state file.

When you're done

  • Delete logs/setup-migration/handoff.json once every followup is cleared and the user confirms. The file is a working document, not a record — if the user wants a record, offer to move it to docs/migration-<date>.md before deleting.
  • Tell the user: if the service is running (check launchctl list | grep nanoclaw on macOS or systemctl --user status nanoclaw* on Linux), restart it so the seeded users / user_roles / any channel installs take effect.