Recommended bootstrap scripts for new Loki/OpenClaw instances. Run these on first boot to get a secure, capable agent environment.
| File | Purpose |
|---|---|
| BOOTSTRAP-SECURITY.md | Enable Security Hub, Inspector, budgets, WAF, and operational hygiene |
| BOOTSTRAP-SECRETS-AWS.md | AWS Secrets Manager integration — exec provider, gotchas, troubleshooting |
| BOOTSTRAP-SKILLS.md | Install the FastStart skills library |
| BOOTSTRAP-MEMORY-SEARCH.md | Semantic memory search with embedrock + Cohere Embed v4 on Bedrock |
| BOOTSTRAP-CODING-GUIDELINES.md | Coding standards — testing, linting, commit conventions, CI/CD rules |
| BOOTSTRAP-DISK-SPACE-STRAT.md | EC2 disk space strategy — secondary EBS data volume, nightly cleanup cron, Docker/tmp offloading |
| BOOTSTRAP-DAILY-UPDATE.md | Daily morning briefing cron — costs, security findings, pipeline health |
| File | Purpose |
|---|---|
| BOOTSTRAP-MODEL-CONFIG.md | Configure AI models (Sonnet default, Opus fallback) to save tokens |
| BOOTSTRAP-TELEGRAM.md | Create Telegram bot, wire up OpenClaw, add formatting/reaction rules to SOUL.md |
| BOOTSTRAP-OUTLINE-NOTES.md | Self-hosted Outline wiki (ECS + Aurora + S3 + Cognito OIDC) + workspace sync cron |
| BOOTSTRAP-PIPELINE-NOTIFICATIONS.md | CodePipeline + GitHub Actions → Telegram + OpenClaw webhook alerts |
| BOOTSTRAP-GITHUBACTION-CODE-REVIEW.md | Add automatic Claude Code PR + commit review to GitHub repos via Actions |
| BOOTSTRAP-WEB-UI.md | Expose OpenClaw Control UI via CloudFront + Cognito — ALB, proxy, WebSocket, device pairing |
| OPTIMIZE-TOO-LARGE-CONTEXT.md | Reduce context window usage — trim workspace files, manage memory, compaction strategies |
Essential (run in order):
- SECURITY — always first
- SECRETS-AWS — git-secrets, Secrets Manager rules
- SKILLS — unlocks capabilities
- MEMORY-SEARCH — enables semantic recall
- CODING-GUIDELINES — establish coding standards
- DISK-SPACE-STRAT — set up data volume + nightly cleanup
- DAILY-UPDATE — morning briefing cron
Optional (add as needed):
- MODEL-CONFIG — switch default model to save tokens
- TELEGRAM — create bot, wire up OpenClaw, formatting rules
- PIPELINE-NOTIFICATIONS — wire up build alerts
- OUTLINE-NOTES — team wiki
- GITHUBACTION-CODE-REVIEW — add to each repo
- WEB-UI — expose Control UI via CloudFront
Built-in (no bootstrap needed): Heartbeat monitoring (
HEARTBEAT.md), daily memory logging (memory/YYYY-MM-DD.md), long-term recall (MEMORY.md) — these are part of the OpenClaw runtime.
These scripts are designed to be read by your Loki agent on first boot. They're included in the FastStart brain template and auto-loaded into the workspace.
You can also paste them into a conversation manually:
- Copy the contents of the bootstrap file you want to run
- Paste it as your first message to Loki
- Loki will execute the steps and report back
Each bootstrap creates a marker file in memory/ so it won't re-run on subsequent sessions.
Create a new BOOTSTRAP-*.md file following the same pattern:
- Clear numbered steps
- Marker file check at the top (
memory/.bootstrapped-*) - Marker file creation at the end
- No real secrets — use
YOUR_VALUEplaceholders throughout
- loki-template-brain — Workspace template files (SOUL.md, AGENTS.md, etc.)
- loki-skills — Skills library
- embedrock — Bedrock embedding proxy