Open Source Project Operations Practice Survey Report
Report Generated By: Claude Code
Generated Date: 2026-03-24
Surveyed Projects: AutoResearchClaw, ironclaw, nanobot, NemoClaw, openclaw
Table of Contents
- Overview
- Project Analysis
- Operations Priority Matrix
- Best Practice Comparison
- Missing Items and Root Cause Analysis
- Suggestions for New Operations Engineers
Overview
This report provides an in-depth survey of DevOps/operations practices across five open source projects. It aims to help new operations engineers understand the scope, priorities, and implementation methods of each project's operations work.
Project Summaries
| Project | Tech Stack | Purpose | Maturity |
|---|---|---|---|
| openclaw | TypeScript/Node.js | Multi-channel AI gateway | ★★★★★ Highest |
| ironclaw | Rust | AI agent system | ★★★★☆ Very High |
| NemoClaw | TypeScript/Node + Python | AI agent + plugin system | ★★★★☆ Very High |
| nanobot | Python | Simplified agent | ★★☆☆☆ Basic |
| AutoResearchClaw | Python | Research pipeline automation | ★★☆☆☆ Research |
Maturity Assessment Dimensions
- openclaw: 14 CI workflows, multi-platform automated releases, comprehensive security scanning, multi-environment deployment support
- ironclaw: 13 CI workflows, mature Rust toolchain ecosystem, automated releases, GCP deployment scripts
- NemoClaw: 7 CI workflows, full-stack code quality with prek, Sphinx documentation system, nightly E2E tests
- nanobot: 1 basic CI workflow, Docker containerization, manual deployment
- AutoResearchClaw: No CI, 7 domain-specific Dockerfiles, primarily local execution
Project Analysis
1. openclaw – Mature-Level Operations Practices
1.1 CI/CD (Highest Priority)
Why: Open source projects need automated testing for quality assurance, multi-platform support to expand user base, and automated releases to improve efficiency.
Implementation:
| Workflow | Function | Trigger |
|---|---|---|
ci.yml | Core CI pipeline (16 parallel tasks) | Push/PR |
docker-release.yml | Multi-architecture Docker release | Tag push |
openclaw-npm-release.yml | npm package release | Tag push |
plugin-npm-release.yml | Plugin npm release | Tag push |
macos-release.yml | macOS app release | Tag push |
codeql.yml | CodeQL security scanning | PR/Push |
install-smoke.yml | Installation smoke test | Schedule |
sandbox-common-smoke.yml | Sandbox smoke test | Schedule |
workflow-sanity.yml | Workflow self-check | Push |
Key Techniques:
- Smart CI skipping: skip heavy tasks for documentation-only changes
- Test sharding: Linux 2 shards, Windows 8 shards
- Matrix builds: amd64/arm64 dual architecture
- Artifact caching: pnpm store, SwiftPM
- Custom actions: setup-node-env, setup-pnpm-store-cache
Code Location: .github/workflows/
1.2 Containerization
Why: Consistent runtime environment, cross-platform deployment, dependency isolation, simplified distribution.
Implementation:
Dockerfile (multi-stage)
├── ext-deps: Install system dependencies
├── build: Compile TypeScript, generate A2UI bundle
├── runtime-assets: Prepare runtime resources
└── runtime: node:24-bookworm + non-root userSecurity Features:
- SHA256 pinned base images
- Non-root user (node, uid 1000)
- OCI metadata labels
- Health check endpoints:
/healthz,/readyz
docker-compose Security Configuration:
yaml
security_opt:
- no-new-privileges:true
cap_drop:
- ALL1.3 Deployment
Why: Support multiple deployment environments, automate deployments to reduce human error, enable elastic scaling.
Implementation:
| Deployment Target | Config File | Description |
|---|---|---|
| Fly.io | fly.toml | Cloud platform deployment, 2048MB memory, auto-scaling |
| Kubernetes | scripts/k8s/ | Kind cluster creation and deployment scripts |
| Docker | docker-compose.yml | Local/development environment |
| Podman | scripts/podman/setup.sh | Rootless container support |
Fly.io Configuration Highlights:
- Primary region: iad
- Internal port: 3000
- Force HTTPS
- Data volume:
/data - Auto-stop/start for cost savings
1.4 Monitoring & Observability
Why: Detect failures promptly, understand system health, track performance issues.
Implementation:
| Feature | Implementation |
|---|---|
| Health checks | /healthz, /readyz HTTP endpoints |
| Channel health monitoring | src/gateway/channel-health-monitor.ts |
| Usage metrics UI | src/ui/views/usage-metrics.ts |
| Diagnostics extension | diagnostics-otel extension |
1.5 Testing
Why: Ensure code quality, prevent regressions, verify multi-platform compatibility.
Implementation:
- Vitest: Node main test framework
- Playwright: E2E tests
- Swift Tests: macOS native tests
- JUnit: Android tests
- V8 Coverage: 70% coverage threshold
Test Sharding Strategy:
Linux: 2 shards (parallel)
Windows: 8 shards (parallel)
macOS: 1 task (sequential)
Android: parallel build1.6 Code Quality
Why: Unified code style, catch bugs early, reduce cognitive load.
Pre-commit Hooks:
| Priority | Check Item | Tool |
|---|---|---|
| 0 | File cleanup | trailing-whitespace, fix-byte-end-marker |
| 5 | Formatting | ruff, prettier, eslint, oxfmt |
| 10 | Static analysis | shellcheck, hadolint, gitleaks, actionlint |
| 20 | Project checks | oxlint, SwiftLint, Python tests |
TypeScript Strict Mode:
- No
@ts-ignore - No
any - Boundary guard checks
- Plugin SDK API drift detection
1.7 Security
Why: Protect user data, prevent supply chain attacks, meet compliance requirements.
Implementation:
| Security Measure | Tool | Purpose |
|---|---|---|
| Static code analysis | CodeQL | Find code vulnerabilities |
| Workflow auditing | zizmor | GitHub Actions security audit |
| Secret detection | detect-secrets | Prevent secret leaks |
| Dependency auditing | pnpm audit | Dependency vulnerability scanning |
| GPG verification | – | Image signature verification |
| Private key detection | – | Prevent committing private keys |
1.8 Release Management
Why: Automated release process, multi-platform support, version synchronization.
Implementation:
Tag Push Trigger
├── Docker image build (amd64 + arm64)
├── Push to GHCR
├── npm package publish (main + plugins)
├── macOS app packaging (Sparkle updates)
├── iOS/Android app packaging (Fastlane)
└── Create GitHub ReleaseVersion Sync: All platform version numbers sync automatically
1.9 Documentation
Why: Lower onboarding difficulty, reduce support costs, keep docs in sync with code.
Implementation:
- Mintlify: docs.openclaw.ai
- i18n: Chinese auto-generation
- Configuration drift detection: detect differences between docs and actual config
- Online preview: preview documentation on PR
2. ironclaw – Rust Ecosystem-Level Operations Practices
2.1 CI/CD
Implementation:
| Workflow | Function |
|---|---|
test.yml | Comprehensive test suite (unit, integration, WASM, Docker build) |
code_style.yml | Formatting (rustfmt), linting (clippy), dependency audit (cargo-deny) |
coverage.yml | Code coverage, upload to Codecov |
e2e.yml | Playwright E2E tests, run weekly |
release.yml | cargo-dist automated release |
release-plz.yml | Version management and changelog |
claude-review.yml | Claude AI code review |
Rust-Specific Features:
- Feature flag matrix tests
- WASM compatibility tests
- Benchmark compilation check
- Swatinem/rust-cache caching
- Cross-platform (Linux, Windows)
2.2 Containerization
Implementation:
Dockerfile (multi-stage)
├── rust:1.92-slim-bookworm (compile)
├── WASM compilation
├── Database migration
└── debian:bookworm-slim (runtime, non-root user)docker-compose:
yaml
services:
db:
image: pgvector/pgvector:pg16
healthcheck: pg_isready2.3 Deployment
GCP Deployment: deploy/setup.sh
- GCP Compute Engine VM bootstrap script
- Cloud SQL Auth Proxy installation
- systemd service configuration
- Artifact Registry authentication
systemd Services:
cloud-sql-proxy.service (database proxy)
ironclaw.service (main application)2.4 Observability
Implementation: src/observability/
- Event/metric recording module
- Health check endpoint
- Analytics module:
src/history/analytics.rs
2.5 Testing
Coverage Strategy:
- cargo-llvm-cov
- Multi-configuration tests (all-features, default, libsql-only)
- PostgreSQL + pgvector integration
- E2E coverage
- Coverage gate
E2E Tests:
- Python/Playwright
- 4 parallel test groups (core, features, extensions, routines)
- Runs every Monday
2.6 Code Quality
Toolchain:
rustfmt: Formatting checkclippy: Linting with-D warningscargo-deny: Dependency audit (vulnerabilities, licenses, sources)- pre-commit: Version bump check
2.7 Security
Measures:
cargo-deny: Dependency vulnerability scanning- SHA256 verification: Cloud SQL Proxy
- GPG key verification
scripts/pre-commit-safety.sh
2.8 Release Management
cargo-dist Automation:
- Multi-platform build (Linux, macOS, Windows)
- WASM extension packaging
- SHA256 checksums
- Automatic GitHub Release
release-plz:
- Automatic version bump
- Changelog generation
- Cargo registry publish
2.9 Documentation
CLAUDE.md: Development guideCOVERAGE_PLAN.md: Coverage trackingdocs/plans/: Operations documentation
3. NemoClaw – Multi-Language Hybrid Operations Practices
3.1 CI/CD
Workflows:
| Workflow | Function | Trigger |
|---|---|---|
pr.yaml | PR checks (lint, test, coverage, E2E) | PR |
nightly-e2e.yaml | Nightly full E2E (NVIDIA API) | Daily at midnight |
docs-preview-pr.yaml | Documentation preview build | PR |
commit-lint.yaml | Commit message linting | Push |
docker-pin-check.yaml | Docker image pin check | Push |
pr-limit.yaml | PR frequency limiting | PR |
Features:
- Multi-language testing (TypeScript + Python)
- Documentation PR preview
- Commit convention enforcement
- Coverage gate
3.2 Containerization
Dockerfile:
Multi-stage build
├── builder: node:22-slim + Python 3.11.2
├── TypeScript plugin compilation
├── OpenClaw CLI installation
└── runtime: non-root user + Landlock securitySecurity Features:
- Landlock: read-only
.openclaw - Immutable/writable directory separation
- Auto-generated auth token
3.3 Deployment
Scripts:
scripts/backup-workspace.sh: workspace backupscripts/brev-setup.sh: BREV configurationscripts/install.sh: general installationscripts/check-coverage-ratchet.sh: coverage verification
3.4 Testing
Makefile Commands:
makefile
make check # all pre-commit hooks
make lint # Lint TS + Python
make format # Format code
make docs # Build Sphinx documentation
make docs-live # Live documentationCoverage:
- Vitest (TypeScript)
- Coverage gate
3.5 Code Quality
prek Hooks:
| Priority | Check Item |
|---|---|
| 0 | File cleanup (trailing-whitespace, EOF, etc.) |
| 5 | Formatting (shfmt, ruff, prettier, eslint) |
| 6 | Auto-fix after formatting |
| 10 | Linters (merge conflicts, YAML/TOML validation, private key, shellcheck, had) |
| 10 | Security (gitleaks, SPDX header validation) |
| 20 | Testing (Vitest) |
| pre-push | tsc, pyright |
Commit Convention:
- Conventional Commits
- PR title linting (squash-merge path)
3.6 Security
Measures:
- gitleaks: Secret scanning
- SPDX: License header validation
- Private key detection
- Landlock: read-only configuration
- Build arg security
3.7 Documentation
- Sphinx documentation system
- Live documentation preview
- Monitoring docs:
docs/monitoring/ - Deployment docs:
docs/deployment/
4. nanobot – Basic-Level Operations Practices
4.1 CI/CD
Workflow: .github/workflows/ci.yml
- Matrix tests: Python 3.11, 3.12, 3.13
- uv dependency management
- pytest with all extras
4.2 Containerization
Dockerfile:
Multi-stage build
├── deps: uv install dependencies
├── source: copy source code
├── build: compile WhatsApp bridge (Node.js 20)
└── runtime: non-root userdocker-compose:
yaml
services:
gateway: port 18790
cli: stdin_open, tty
Resource limits: CPU 1, memory 1G4.3 Testing
- pytest
- Matrix Python version testing
- Primarily local execution
4.4 Documentation
- SECURITY.md
Characteristics: Minimal operations setup suitable for small, fast-iteration projects
5. AutoResearchClaw – Research-Oriented Operations Practices
5.1 Containerization (Core)
7 Dockerfiles:
| Dockerfile | Purpose |
|---|---|
Dockerfile | GPU experiment sandbox (CUDA 12.4.1) |
Dockerfile.biology | Biology research |
Dockerfile.chemistry | Chemistry research |
Dockerfile.economics | Economics research |
Dockerfile.generic | General research |
Dockerfile.math | Mathematics |
Dockerfile.physics | Physics |
Base Image: nvidia/cuda:12.4.1-cudnn-devel-ubuntu22.04
Preinstalled Stack:
- ML: PyTorch, torchvision, torchaudio
- Scientific computing: numpy, scipy, pandas, matplotlib
- LLM: transformers, datasets, peft, trl
- RL: Gymnasium
- Datasets: CIFAR-10/100, Fashion-MNIST, MNIST
Security: Non-root user (researcher)
5.2 Monitoring & Metrics
Implementation:
tests/test_rc_health.py: Health checksearchclaw/dashboard/metrics.py: Metric collectionsearchclaw/experiment/metrics.py: Experiment metrics- Custom dashboard (broadcast/collector architecture)
5.3 Testing
- pytest (local execution)
- No automated CI
5.4 Characteristics
Research-focused, containerization is core, low automation, suitable for experiment-driven development
Operations Priority Matrix
| Priority | Work Item | openclaw | ironclaw | NemoClaw | nanobot | AutoRC |
|---|---|---|---|---|---|---|
| P0 – Critical | Core CI/CD | ✓ | ✓ | ✓ | ✓ | - |
| Containerization | ✓ | ✓ | ✓ | ✓ | ✓ | |
| Test automation | ✓ | ✓ | ✓ | ✓ | - | |
| P1 – Important | Code quality | ✓ | ✓ | ✓ | - | - |
| Security scanning | ✓ | ✓ | ✓ | - | - | |
| Automated releases | ✓ | ✓ | - | - | - | |
| P2 – Recommended | Health checks | ✓ | ✓ | ✓ | - | ✓ |
| Multi-environment deployment | ✓ | ✓ | - | - | - | |
| Coverage tracking | ✓ | ✓ | ✓ | - | - | |
| P3 – Enhancement | Observability platform | ✓ | ✓ | - | - | ✓ |
| IaC (Terraform) | - | - | - | - | - | |
| Helm Charts | - | - | - | - | - | |
| Chaos engineering | - | - | - | - | - |
Priority Descriptions
P0 – Critical (Must Do):
- Without these, the open source project cannot run stably
- Affects code quality and development efficiency
- Must be established for new projects
P1 – Important (Should Do):
- Improves security and compliance
- Reduces manual operations
- Essential for mature projects
P2 – Recommended (Nice to Have):
- Enhances operations visibility
- Supports multi-environment strategies
- Implement when possible
P3 – Enhancement (Optional):
- Enterprise-grade requirements
- Needed only for large-scale deployments
- Can be added later
Best Practice Comparison
1. CI/CD Best Practices
| Best Practice | Description | Following Projects |
|---|---|---|
| Multi-platform testing | Linux/Windows/macOS parallel testing | openclaw, ironclaw, nanobot, NemoClaw |
| Smart caching | Cache dependencies and build artifacts | openclaw, ironclaw |
| Matrix builds | Multi-version/multi-configuration parallel builds | openclaw, ironclaw, NemoClaw, nanobot |
| PR previews | Build preview environment on PR | openclaw, NemoClaw |
| Documentation change skip | Skip heavy tasks for doc-only changes | openclaw |
| Nightly / scheduled tasks | Run time-consuming tasks | openclaw, ironclaw, NemoClaw |
| Coverage tracking | Enforce coverage gates | openclaw, ironclaw, NemoClaw |
| E2E testing | End-to-end automated tests | openclaw, ironclaw, NemoClaw |
2. Containerization Best Practices
| Best Practice | Description | Following Projects |
|---|---|---|
| Multi-stage builds | Separate build and runtime environments | openclaw, ironclaw, nanobot, NemoClaw |
| Non-root user | Security best practice | All |
| SHA256 pinning | Prevent base image tampering | openclaw |
| Health checks | Container health probes | openclaw, ironclaw |
| Minimal images | Include only required dependencies | openclaw, ironclaw |
| Security hardening | no-new-privileges, cap_drop | openclaw |
| OCI standard | Standard metadata | openclaw |
| Resource limits | CPU/memory limits | nanobot |
3. Security Best Practices
| Best Practice | Description | Following Projects |
|---|---|---|
| Secret scanning | Prevent secret leaks | openclaw, NemoClaw |
| Dependency auditing | Scan dependency vulnerabilities | openclaw, ironclaw |
| SAST scanning | Static code analysis | openclaw |
| Workflow auditing | CI/CD workflow security checks | openclaw |
| Signature verification | GPG/image signing | openclaw, ironclaw |
| License compliance | Dependency license checks | ironclaw, NemoClaw |
| Build arg security | Prevent injection attacks | NemoClaw |
4. Code Quality Best Practices
| Best Practice | Description | Following Projects |
|---|---|---|
| Pre-commit hooks | Automatic checks before commit | openclaw, ironclaw, NemoClaw |
| Unified formatting | Automated code formatting | openclaw, ironclaw, NemoClaw |
| Linting | Static analysis | All |
| Type safety | Strict type checking | openclaw, ironclaw, NemoClaw |
| Commit convention | Conventional Commits | NemoClaw |
| PR automation | Automatic labeling, categorization | openclaw, ironclaw |
5. Monitoring Best Practices
| Best Practice | Description | Following Projects |
|---|---|---|
| Health check endpoints | /healthz, /readyz | openclaw, ironclaw, NemoClaw |
| Standardized responses | JSON format health checks | openclaw |
| Metric collection | Built-in metrics module | openclaw, ironclaw |
| Usage tracking | Usage statistics and analytics | openclaw, ironclaw |
| Diagnostics extensions | Pluggable diagnostics | openclaw |
Missing Items and Root Cause Analysis
1. Common Missing Items
| Missing Item | Why It Might Be Absent | Impact |
|---|---|---|
| Terraform IaC | Projects not large enough, manual management sufficient | Difficult multi-cloud deployment |
| Helm Charts | Using docker-compose or custom scripts | Complex K8s deployment |
| Prometheus/Grafana | Projects have their own metrics solutions | Difficult unified monitoring |
| Chaos engineering | Not enterprise-grade applications, not needed | Insufficient resilience validation |
| Centralized logging | Using log service output | Difficult log aggregation |
| SBOM generation | Dependency scanning already sufficient | Lower supply chain transparency |
2. Project-Specific Missing Items and Causes
openclaw
- Missing: None
- Reason: Most mature project, most comprehensive operations practices
ironclaw
- Missing: None
- Reason: Mature Rust ecosystem, complete toolchain
NemoClaw
- Missing: No automated releases
- Reason: Possibly still in development, focus on quality rather than releases
nanobot
- Missing: Almost all advanced operations practices
- Reason:
- Project positioning: simplified agent
- Fast iteration first
- Limited resources
- Small user base
AutoResearchClaw
- Missing: CI/CD, security scanning, automated releases
- Reason:
- Research project, not production application
- Container-centric environment provision
- Primarily local execution
- Frequent experiments, low automation value
Suggestions for New Operations Engineers
Phase 1: Foundation Setup (1–2 weeks)
Based on the priority matrix, first establish P0-level operations infrastructure:
1. Set Up CI/CD Pipeline
GitHub Actions Template:
yaml
name: CI
on:
push:
branches: [ main, develop ]
pull_request:
jobs:
test:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v4
- name: Run tests
run: make test
lint:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v4
- name: Run linter
run: make lintTool Selection Reference:
- Python: pytest + ruff + pre-commit
- Node.js: vitest + eslint + prettier + prek
- Rust: cargo test + clippy + rustfmt
2. Containerize the Project
Dockerfile Best Practices:
dockerfile
# 1. Pin base image version
FROM node:24-bookworm@sha256:xxx AS builder
# 2. Non-root user
RUN adduser --disabled-password --gecos "" appuser
# 3. Install dependencies
WORKDIR /app
COPY package*.json ./
RUN npm ci --only=production
# 4. Copy code
COPY . .
RUN npm run build
# 5. Runtime image
FROM node:24-slim@sha256:xxx
COPY --from=builder /app /app
USER appuser
EXPOSE 3000
HEALTHCHECK --interval=30s CMD curl -f http://localhost:3000/healthz || exit 1
CMD ["node", "/app/dist/index.js"]3. Establish Test Automation
Test Pyramid:
/\
/E2E\ (few, end-to-end)
/------\
/ \ (medium, integration)
/----------\
/ Unit tests \ (many, fast)
--------------Key Metrics:
- Test time: should be < 10 minutes
- Coverage: core code > 70%
- Parallelization: shard for speed
Phase 2: Quality Improvement (2–4 weeks)
Establish P1-level operations practices:
1. Set Up Pre-commit Hooks
.pre-commit-config.yaml:
yaml
repos:
- repo: https://github.com/pre-commit/pre-commit-hooks
hooks:
- id: trailing-whitespace
- id: end-of-file-fixer
- id: check-yaml
- repo: local
hooks:
- id: run-tests
name: Run tests
entry: pytest
language: system
pass_filenames: false2. Security Scanning
Minimal Security Stack:
yaml
# Dependency auditing
- id: npm-audit
entry: npm audit --audit-level=high
# Secret scanning
- repo: https://github.com/Yelp/detect-secrets
hooks:
- id: detect-secrets3. Automated Releases
Release Workflow:
yaml
name: Release
on:
push:
tags:
- 'v*'
jobs:
release:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v4
- name: Build
run: make build
- name: Publish
run: make publishPhase 3: Continuous Improvement (Ongoing)
Add P2 and P3 level practices:
1. Multi-Environment Support
- Development environment: Docker Compose
- Staging environment: Cloud (Fly.io, Render, etc.)
- Production environment: K8s or cloud platform
2. Monitoring & Observability
Minimal Monitoring Stack:
Health check endpoints: /healthz, /readyz
Log output: structured logs (JSON)
Error tracking: Sentry or similar3. Documentation
Required Documentation:
README.md: Project introduction, quick startCONTRIBUTING.md: Contribution guideDEPLOYMENT.md: Deployment documentationTROUBLESHOOTING.md: Troubleshooting guide
Tool Recommendation Table
| Category | Tool | Use Case |
|---|---|---|
| CI/CD | GitHub Actions | Preferred for open source |
| GitLab CI | GitLab-hosted | |
| Jenkins | Enterprise | |
| Containers | Docker | General |
| Podman | Rootless needs | |
| Code Quality | pre-commit | Git hooks |
| ruff | Python | |
| eslint | Node.js | |
| clippy | Rust | |
| Testing | pytest | Python |
| vitest | Node.js | |
| Playwright | E2E | |
| Security | CodeQL | Static analysis |
| gitleaks | Secret scanning | |
| Snyk | Dependency scanning | |
| Monitoring | Sentry | Error tracking |
| Prometheus | Metrics | |
| Documentation | Sphinx | Python |
| Mintlify | Modern documentation platform |
Operations Checklist
Before Each Commit
- [ ] Local tests pass
- [ ] Code formatted
- [ ] Lint checks pass
- [ ] No sensitive information
Before Each Release
- [ ] All CI checks pass
- [ ] Version number updated
- [ ] Changelog updated
- [ ] Documentation synced
Monthly Review
- [ ] Dependency security vulnerabilities
- [ ] CI/CD pipeline optimization needs
- [ ] Test coverage trends
- [ ] Server/container health status
Learning Path
Foundation (Month 1)
- Docker basics
- Git basics
- Shell scripting
- CI/CD concepts
Intermediate (Months 2–3)
- Deep GitHub Actions usage
- Container orchestration
- Testing strategies
- Security basics
Advanced (Ongoing)
- Observability
- IaC
- Cloud platform management
- Capacity planning
Appendix
A. Project File Structure Cheatsheet
openclaw/
├── .github/workflows/ # 14 CI workflows
├── .pre-commit-config.yaml # Code quality hooks
├── Dockerfile # Multi-stage build
├── docker-compose.yml # Local environment
├── fly.toml # Fly.io deployment
└── scripts/k8s/ # K8s deployment scripts
ironclaw/
├── .github/workflows/ # 13 CI workflows
├── .githooks/pre-commit # Git hooks
├── Dockerfile # Multi-stage build
├── docker-compose.yml # Local environment
└── deploy/ # GCP deployment scripts
NemoClaw/
├── .github/workflows/ # 7 CI workflows
├── .pre-commit-config.yaml # prek configuration
├── Makefile # Build commands
└── scripts/ # Helper scripts
nanobot/
├── .github/workflows/ci.yml # 1 CI workflow
├── Dockerfile # Basic container
└── docker-compose.yml # Local environment
AutoResearchClaw/
├── researchclaw/docker/ # 7 domain Dockerfiles
├── sentinel.sh # Daemon script
└── tests/test_rc_health.py # Health checkB. Common Commands Cheatsheet
bash
# Docker
docker build -t app:latest .
docker run -d -p 3000:3000 app:latest
docker-compose up -d
docker-compose logs -f
# Git
git checkout -b feature/new
git add .
git commit -m "feat: add new feature"
git push origin feature/new
# GitHub CLI
gh pr create --title "New feature" --body "..."
gh release create v1.0.0 --notes "..."C. Reference Resources
- GitHub Actions Documentation
- Docker Best Practices
- Pre-commit
- Testing Best Practices
- Open Source Maintenance Guide
End of Report
If you have questions or would like to explore specific operations practices further, feel free to reach out.