This repository is a template/starter for OpenClaw deployments. It must not contain live credentials or runtime secrets.

• .env
• provider API keys
• OAuth tokens
• auth-profiles.json
• models.json containing sensitive credentials
• real /etc/openclaw/env
• session/runtime artifacts

Before publishing this repository:

• confirm .env is ignored
• confirm all keys are placeholders only
• confirm no runtime auth/session files are tracked
• confirm channel IDs, tokens, and user IDs are sanitized unless intentionally public examples
• confirm hardcoded hostnames/IPs are removed or documented as examples

If sensitive data is found in the repository history, rotate the affected credential first, then rewrite history if needed.